CVE-2023-5871

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 27, 2023
Updated: Apr 30, 2024
CWE ID 617

Summary

CVE-2023-5871 is a recently disclosed vulnerability affecting libnbd, a popular library used to access block devices over a network. The flaw, which is related to the Network Block Device (NBD) protocol, can be exploited by a malicious NBD server. By sending specially crafted packets, an attacker may cause a denial of service (DoS) condition, disrupting the targeted system's availability. This issue underscores the importance of regularly updating and securing network-accessible components to protect against potential DoS attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Red Hat Enterprise Linux

Affected Vendors

  • Red Hat