← Retour aux CVEs
CVE-2023-2162
MEDIUM5.5
Description
A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal information.
Details CVE
Score CVSS v3.15.5
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vecteur d'attaqueLOCAL
ComplexiteLOW
Privileges requisLOW
Interaction utilisateurNONE
Publie4/19/2023
Derniere modification3/19/2025
Sourcenvd
Observations honeypot0
Produits affectes
linux:linux_kernel
Faiblesses (CWE)
CWE-416CWE-416
References
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html(secalert@redhat.com)
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html(secalert@redhat.com)
https://www.spinics.net/lists/linux-scsi/msg181542.html(secalert@redhat.com)
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.html(af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.spinics.net/lists/linux-scsi/msg181542.html(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.