5.5
CVE-2023-53657
- EPSS 0.14%
- Veröffentlicht 07.10.2025 15:21:18
- Zuletzt bearbeitet 03.02.2026 19:27:32
- CVE-Watchlists
- Unerledigt
ice: Don't tx before switchdev is fully configured
In the Linux kernel, the following vulnerability has been resolved: ice: Don't tx before switchdev is fully configured There is possibility that ice_eswitch_port_start_xmit might be called while some resources are still not allocated which might cause NULL pointer dereference. Fix this by checking if switchdev configuration was finished.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.55
Linux ≫ Linux Kernel Version >= 6.2 < 6.5.5
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.04 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://git.kernel.org/stable/c/5760a72b3060150b587eff3e879648c7470efddd
https://git.kernel.org/stable/c/63ff5a94649837d980e3b9ef535c793ec8cb0ca7
https://git.kernel.org/stable/c/7aa529a69e92b9aff585e569d5003f7c15d8d60b