CVE-2023-45863

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Oct 14, 2023

Updated: Jan 11, 2024

CWE ID 787

Summary

CVE-2023-45863 is a recently disclosed vulnerability affecting the Linux kernel version prior to 6.2.3. This issue involves the kobject.c library, where a race condition can be exploited by attackers with root access. Successful exploitation results in an out-of-bounds write in the fill_kobj_path function, potentially allowing the attacker to overwrite memory and gain further system control. The impact of this vulnerability is significant, as it can lead to privilege escalation and other malicious activities. It is essential for system administrators to upgrade their Linux kernel to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database