CVE-2023-5197

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 27, 2023

Updated: Jan 11, 2024

CWE ID 416

Summary

CVE-2023-5197 is a use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component. It affects various products, including ohMfk7, ohMfk6, ohMfk5, and ohMfk4. The vulnerability can be exploited to achieve local privilege escalation. To remediate it, upgrading past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325 is recommended. The vulnerability poses a high danger to organizations as it has a base severity rating of HIGH and can lead to confidentiality and integrity impacts. The exploitability score is 1.8 out of 10, indicating it is relatively easy to exploit.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/suQ-Sv
https://www.cve.org/CVERecord?id=CVE-2023-5197
https://nvd.nist.gov/vuln/detail/CVE-2023-5197

Back to Vulnerability Database

CVE-2023-5197

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations