-

CVE-2023-53153

EPSS 0.03%
Veröffentlicht 15.09.2025 14:03:21
Zuletzt bearbeitet 15.09.2025 15:22:27
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

wifi: cfg80211: Fix use after free for wext

Key information in wext.connect is not reset on (re)connect and can hold
data from a previous connection.

Reset key data to avoid that drivers or mac80211 incorrectly detect a
WEP connection request and access the freed or already reused memory.

Additionally optimize cfg80211_sme_connect() and avoid an useless
schedule of conn_work.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 66af4a2ab1d65d556d638cb9555a3b823c2557a9

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < a2a92b3e9d8e03ee3f9ee407fc46a9b4bd02d8b6

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 6f1959c17d4cb5b74af6fc31dc787e1dc3e4f6e2

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 2cfe78619b0de6d2da773978bc2d22797212eaa7

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < fd081afd21eb35b968b0330700c43ec94986e1c4

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 22dfb21bf1cd876616d45cda1bc6daa89eec6747

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < f4b6a138efb8a32507b8946104e32cb926308da7

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

Version < 015b8cc5e7c4d7bb671f1984d7b7338c310b185b

Version fffd0934b9390f34bec45762192b7edd3b12b4b5

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.32

Status affected

Version < 2.6.32

Version 0

Status unaffected

Version <= 4.14.*

Version 4.14.308

Status unaffected

Version <= 4.19.*

Version 4.19.276

Status unaffected

Version <= 5.4.*

Version 5.4.235

Status unaffected

Version <= 5.10.*

Version 5.10.173

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.078

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/66af4a2ab1d65d556d638cb9555a3b823c2557a9

https://git.kernel.org/stable/c/a2a92b3e9d8e03ee3f9ee407fc46a9b4bd02d8b6

https://git.kernel.org/stable/c/6f1959c17d4cb5b74af6fc31dc787e1dc3e4f6e2

https://git.kernel.org/stable/c/2cfe78619b0de6d2da773978bc2d22797212eaa7

https://git.kernel.org/stable/c/fd081afd21eb35b968b0330700c43ec94986e1c4

https://git.kernel.org/stable/c/22dfb21bf1cd876616d45cda1bc6daa89eec6747

https://git.kernel.org/stable/c/f4b6a138efb8a32507b8946104e32cb926308da7

https://git.kernel.org/stable/c/015b8cc5e7c4d7bb671f1984d7b7338c310b185b

https://nvd.nist.gov/vuln/detail/CVE-2023-53153

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53153

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53153

EUVD