CVE-2023-53769

EPSS 0.02%
Veröffentlicht 08.12.2025 01:19:32
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

virt/coco/sev-guest: Double-buffer messages

In the Linux kernel, the following vulnerability has been resolved:

virt/coco/sev-guest: Double-buffer messages

The encryption algorithms read and write directly to shared unencrypted
memory, which may leak information as well as permit the host to tamper
with the message integrity. Instead, copy whole messages in or out as
needed before doing any computation on them.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

CNA 2 VulnDex Vulnerability Enrichment 5

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version d5af44dde5461d125d1602ac913ab5c6bdf09b8b

Version < 577a64725bfd77645986168e953d405067ee565b

Status affected

Version d5af44dde5461d125d1602ac913ab5c6bdf09b8b

Version < c27dafc4aa50a29ec927b3aa84ac7b430071f682

Status affected

Version d5af44dde5461d125d1602ac913ab5c6bdf09b8b

Version < 4b69c63f716cfda38e1210e65b68f67f6cee2ddf

Status affected

Version d5af44dde5461d125d1602ac913ab5c6bdf09b8b

Version < 965006103a14703cc42043bbf9b5e0cdf7a468ad

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.19

Status affected

Version 0

Version < 5.19

Status unaffected

Version <= 6.1.*

Version 6.1.28

Status unaffected

Version <= 6.2.*

Version 6.2.15

Status unaffected

Version <= 6.3.*

Version 6.3.2

Status unaffected

Version <= *

Version 6.4

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.051

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/577a64725bfd77645986168e953d405067ee565b

https://git.kernel.org/stable/c/c27dafc4aa50a29ec927b3aa84ac7b430071f682

https://git.kernel.org/stable/c/4b69c63f716cfda38e1210e65b68f67f6cee2ddf

https://git.kernel.org/stable/c/965006103a14703cc42043bbf9b5e0cdf7a468ad

https://nvd.nist.gov/vuln/detail/CVE-2023-53769

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53769

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53769

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-53769