CVE-2023-32248
CVSS v3.1
7.5 (High)
EPSS
0.61 % (79th)
Affected Products
6
Advisories
6
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_TREE_CONNECT and SMB2_QUERY_INFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.
Weaknesses
- CWE-476
- NULL Pointer Dereference
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2023-07-24 16:15:11
(14 months ago) - Updated Date
-
2023-12-04 14:54:50
(9 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...