VDB
CVE-2023-53661
CVE-2023-53661
PUBLISHED
CVSS 5.5 MEDIUM
In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow. Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.
EPSS 0.02% · 4.6th percentile
Risk Scores
CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.02%
4.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| linux | linux_kernel | 4.4, 4.4, 4.4 |
| Linux | Linux | c0c050c58d840994ba842ad1c338a98e7c12b764, c0c050c58d840994ba842ad1c338a98e7c12b764, c0c050c58d840994ba842ad1c338a98e7c12b764 |
Exploit Intelligence
- CIRCL seen: CVE-2023-53661 (circl-sighting)
- https://git.kernel.org/stable/c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460e (circl)
- https://git.kernel.org/stable/c/efb1a257513438d43f4335f09b2f684e8167cad2 (circl)
- https://git.kernel.org/stable/c/17e0453a7523ad7a25bb47af941b150a6c66d7b6 (circl)
- https://git.kernel.org/stable/c/7c6dddc239abe660598c49ec95ea0ed6399a4b2a (circl)
Timeline
- Jan 21, 1970 Security Advisory
- Oct 7, 2025 Coalition ESS Score
- Oct 7, 2025 CVE Published
- Oct 8, 2025 EPSS Score
- Oct 10, 2025 Coalition ESS Score
- Oct 13, 2025 Coalition ESS Score
- Oct 14, 2025 EPSS Score
- Oct 21, 2025 EPSS Score
- Oct 23, 2025 Coalition ESS Score
- Oct 27, 2025 EPSS Score
- Oct 30, 2025 Coalition ESS Score
- Nov 2, 2025 EPSS Score
References
- https://git.kernel.org/stable/c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460e url
- https://git.kernel.org/stable/c/efb1a257513438d43f4335f09b2f684e8167cad2 url
- https://git.kernel.org/stable/c/17e0453a7523ad7a25bb47af941b150a6c66d7b6 url
- https://git.kernel.org/stable/c/7c6dddc239abe660598c49ec95ea0ed6399a4b2a url
- https://nvd.nist.gov/vuln/detail/CVE-2023-53661 advisory