Vulnerabilities > CVE-2023-42753 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
linux
redhat
debian
CWE-787
NVD
Published: 2023-09-25
Updated: 2024-02-27

Summary

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.

Vulnerable Configurations

Part Description Count
OS
Linux
5382
OS
Redhat
3
OS
Debian
1

Common Weakness Enumeration (CWE)

References