1. Home
  2. Vulnerabilities
  3. CVE-2023-25012

CVE-2023-25012

CVSS v3.1 4.6 (Medium)
46% Progress
EPSS 0.11 % (45th)
0.11% Progress
Affected Products 1
Advisories 21
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long.

Weaknesses
CWE-416
Use After Free
Related CVEs
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2023-02-02 00:15:09
(19 months ago)
Updated Date
2024-03-25 01:15:53
(5 months ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 6.1.9 and prior versions cpe:2.3:o:linux:linux_kernel <= 6.1.9