CVE-2024-23848
- EPSS 0.25%
- Veröffentlicht 23.01.2024 09:15:35
- Zuletzt bearbeitet 12.05.2026 12:16:17
In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
- EPSS 0.41%
- Veröffentlicht 04.01.2024 17:15:08
- Zuletzt bearbeitet 24.03.2026 12:16:09
A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the ac...
CVE-2023-7042
- EPSS 0.28%
- Veröffentlicht 21.12.2023 20:15:09
- Zuletzt bearbeitet 21.11.2024 08:45:06
A null pointer dereference vulnerability was found in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() in drivers/net/wireless/ath/ath10k/wmi-tlv.c in the Linux kernel. This issue could be exploited to trigger a denial of service.
CVE-2023-33053
- EPSS 0.14%
- Veröffentlicht 05.12.2023 03:15:11
- Zuletzt bearbeitet 11.08.2025 15:06:17
Memory corruption in Kernel while parsing metadata.
CVE-2023-5972
- EPSS 0.28%
- Veröffentlicht 23.11.2023 18:15:07
- Zuletzt bearbeitet 21.11.2024 08:42:53
A null pointer dereference flaw was found in the nft_inner.c functionality of netfilter in the Linux kernel. This issue could allow a local user to crash the system or escalate their privileges on the system.
CVE-2023-6238
- EPSS 0.29%
- Veröffentlicht 21.11.2023 21:15:09
- Zuletzt bearbeitet 21.11.2024 08:43:26
A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. Only privileged user could specify a small meta buffer and let the device perform larger Direct Memory Access (DMA) into the same buffer, overwriting unre...
CVE-2023-47233
- EPSS 0.32%
- Veröffentlicht 03.11.2023 21:15:17
- Zuletzt bearbeitet 12.05.2026 11:16:14
The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this "could be exploited in a r...
CVE-2023-1193
- EPSS 1.05%
- Veröffentlicht 01.11.2023 20:15:08
- Zuletzt bearbeitet 21.11.2024 07:38:38
A use-after-free flaw was found in setup_async_work in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work.
CVE-2023-3397
- EPSS 0.21%
- Veröffentlicht 01.11.2023 20:15:08
- Zuletzt bearbeitet 21.11.2024 08:17:11
A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak internal kernel information.
CVE-2023-4010
- EPSS 0.52%
- Veröffentlicht 31.07.2023 17:15:10
- Zuletzt bearbeitet 21.11.2024 08:34:13
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loophole in its implementation. Due to the inappropriate judgment condition of the goto statement, the function cannot return ...