CVE-2023-54250 — Vulnetix

Try Vulnetix Request Demo

CVE-2023-54250 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: ksmbd: avoid out of bounds access in decode_preauth_ctxt() Confirm that the accessed pneg_ctxt->HashAlgorithms address sits within the SMB request boundary; deassemble_neg_contexts() only checks that the eight byte smb2_neg_context header + (client controlled) DataLength are within the packet boundary, which is insufficient. Checking for sizeof(struct smb2_preauth_neg_context) is overkill given that the type currently assumes SMB311_SALT_SIZE bytes of trailing Salt.

EPSS 0.03% · 7.2th percentile

Risk Scores

EPSS Score

0.03%

7.2th percentile

Affected Products

Vendor	Product	Versions
Linux	Linux	e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9, e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9, e2f34481b24db2fd634b5edb0a5bd0e4d38cc6e9
linux	linux_kernel	5.15, 5.15, 5.15

Timeline

Dec 30, 2025 CVE Published
Dec 30, 2025 PoC Published
Dec 30, 2025 CVE Updated
Dec 31, 2025 EPSS Score
Jan 3, 2026 EPSS Score
Jan 6, 2026 EPSS Score
Jan 9, 2026 EPSS Score
Jan 12, 2026 EPSS Score
Jan 14, 2026 EPSS Score
Jan 17, 2026 EPSS Score
Jan 20, 2026 EPSS Score
Jan 23, 2026 EPSS Score

References

Open in Interactive Console →