CVE-2023-4921
- EPSS 0.4%
- Veröffentlicht 12.09.2023 20:15:10
- Zuletzt bearbeitet 13.02.2025 18:15:48
A use-after-free vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. When the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq...
CVE-2023-4623
- EPSS 0.29%
- Veröffentlicht 06.09.2023 14:15:12
- Zuletzt bearbeitet 20.03.2025 16:59:51
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a pare...
CVE-2020-27418
- EPSS 0.22%
- Veröffentlicht 22.08.2023 19:16:20
- Zuletzt bearbeitet 09.07.2026 01:16:42
A Use After Free vulnerability in Fedora Linux kernel 5.9.0-rc9 allows attackers to obatin sensitive information via vgacon_invert_region() function.
CVE-2023-4459
- EPSS 0.25%
- Veröffentlicht 21.08.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 08:35:12
A NULL pointer dereference flaw was found in vmxnet3_rq_cleanup in drivers/net/vmxnet3/vmxnet3_drv.c in the networking sub-component in vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privilege to cause a denial of...
CVE-2023-4385
- EPSS 0.22%
- Veröffentlicht 16.08.2023 17:15:11
- Zuletzt bearbeitet 21.11.2024 08:34:58
A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs_dmap.c in the journaling file system (JFS) in the Linux Kernel. This issue may allow a local attacker to crash the system due to a missing sanity check.
CVE-2023-40283
- EPSS 0.56%
- Veröffentlicht 14.08.2023 03:15:09
- Zuletzt bearbeitet 25.02.2026 18:17:01
An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled.
CVE-2022-40982
- EPSS 3.88%
- Veröffentlicht 11.08.2023 03:15:14
- Zuletzt bearbeitet 21.11.2024 07:22:21
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2023-20569
- EPSS 6.16%
- Veröffentlicht 08.08.2023 18:15:11
- Zuletzt bearbeitet 21.11.2024 07:41:08
A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure. ...
CVE-2023-20588
- EPSS 12.41%
- Veröffentlicht 08.08.2023 18:15:11
- Zuletzt bearbeitet 21.11.2024 07:41:10
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
CVE-2023-4010
- EPSS 0.52%
- Veröffentlicht 31.07.2023 17:15:10
- Zuletzt bearbeitet 21.11.2024 08:34:13
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...