Lucene search

[email protected]NVD:CVE-2023-26606

HistoryFeb 26, 2023 - 11:15 p.m.

CVE-2023-26606

2023-02-2623:15:10

CWE-416

[email protected]

web.nvd.nist.gov

linux

kernel

use-after-free

ntfs_trim_fs

ntfs3

bitmap.c

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in fs/ntfs3/bitmap.c.

Affected configurations

NVD

Node

linuxlinux_kernelRange5.15–5.15.86

linuxlinux_kernelRange5.16–6.0.16

linuxlinux_kernelRange6.1–6.1.2

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=557d19675a470bb0a98beccec38c5dc3735c20fa

lkml.org/lkml/2023/2/20/860

security.netapp.com/advisory/ntap-20230316-0010/

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2023-26606

prion1 osv7 cve1 redhatcve1 cvelist1 ubuntucve1 debiancve1 nessus6 openvas6 ubuntu6