-

CVE-2023-53153

EPSS 0.03%
Published 15.09.2025 14:03:21
Last modified 15.09.2025 15:22:27
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: Fix use after free for wext

Key information in wext.connect is not reset on (re)connect and can hold
data from a previous connection.

Reset key data to avoid that drivers or mac80211 incorrectly detect a
WEP connection request and access the freed or already reused memory.

Additionally optimize cfg80211_sme_connect() and avoid an useless
schedule of conn_work.

Affected products Warnungen 0 Metrics 1 CWE 0 References 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 66af4a2ab1d65d556d638cb9555a3b823c2557a9

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < a2a92b3e9d8e03ee3f9ee407fc46a9b4bd02d8b6

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 6f1959c17d4cb5b74af6fc31dc787e1dc3e4f6e2

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 2cfe78619b0de6d2da773978bc2d22797212eaa7

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < fd081afd21eb35b968b0330700c43ec94986e1c4

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 22dfb21bf1cd876616d45cda1bc6daa89eec6747

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < f4b6a138efb8a32507b8946104e32cb926308da7

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 015b8cc5e7c4d7bb671f1984d7b7338c310b185b

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 2.6.32

Status affected

Version < 2.6.32

Version 0

Status unaffected

Version <= 4.14.*

Version 4.14.308

Status unaffected

Version <= 4.19.*

Version 4.19.276

Status unaffected

Version <= 5.4.*

Version 5.4.235

Status unaffected

Version <= 5.10.*

Version 5.10.173

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.078

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/66af4a2ab1d65d556d638cb9555a3b823c2557a9

https://git.kernel.org/stable/c/a2a92b3e9d8e03ee3f9ee407fc46a9b4bd02d8b6

https://git.kernel.org/stable/c/6f1959c17d4cb5b74af6fc31dc787e1dc3e4f6e2

https://git.kernel.org/stable/c/2cfe78619b0de6d2da773978bc2d22797212eaa7

https://git.kernel.org/stable/c/fd081afd21eb35b968b0330700c43ec94986e1c4

https://git.kernel.org/stable/c/22dfb21bf1cd876616d45cda1bc6daa89eec6747

https://git.kernel.org/stable/c/f4b6a138efb8a32507b8946104e32cb926308da7

https://git.kernel.org/stable/c/015b8cc5e7c4d7bb671f1984d7b7338c310b185b

https://nvd.nist.gov/vuln/detail/CVE-2023-53153

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53153

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53153

EUVD