CVE-2023-0122

CVSS v3.1 7.5 (High)

EPSS 0.16 % (53^th)

Affected Products 1

Advisories 7

A NULL pointer dereference vulnerability in the Linux kernel NVMe functionality, in nvmet_setup_auth(), allows an attacker to perform a Pre-Auth Denial of Service (DoS) attack on a remote machine. Affected versions v6.0-rc1 to v6.0-rc3, fixed in v6.0-rc4.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2023-01-17 21:15:14
(20 months ago)
Updated Date: 2023-03-02 16:15:13
(18 months ago)

Affected Products

Linux

Linux Kernel

Configuration #1

		CPE23	From	Up To
	Linux Kernel 6.0 Rc1	cpe:2.3:o:linux:linux_kernel:6.0:rc1
	Linux Kernel 6.0 Rc2	cpe:2.3:o:linux:linux_kernel:6.0:rc2
	Linux Kernel 6.0 Rc3	cpe:2.3:o:linux:linux_kernel:6.0:rc3