CVE-2023-4147 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2023-4147

A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.

Published: Aug 7, 2023
Updated: Aug 16, 2023
CVE: CVE-2023-4147
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	6.5-rc1	6.5-rc1.x
linux / linux_kernel	6.5-rc2	6.5-rc2.x
linux / linux_kernel	6.5-rc3	6.5-rc3.x
fedoraproject / fedora	38	38.x
redhat / enterprise_linux	9.0	9.0.x
redhat / enterprise_linux_for_real_time_for_nfv	9.0	9.0.x
redhat / enterprise_linux_for_real_time	9.0	9.0.x
redhat / enterprise_linux_server_aus	9.2	9.2.x
redhat / enterprise_linux_eus	9.2	9.2.x
debian / debian_linux	10.0	10.0.x
debian / debian_linux	11.0	11.0.x
debian / debian_linux	12.0	12.0.x
linux / linux_kernel	6.2	6.4.8
linux / linux_kernel	5.16	6.1.43
linux / linux_kernel	5.11	5.15.124
linux / linux_kernel	5.9	5.10.190