CVE-2023-6040

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 12, 2024

Updated: Jun 27, 2024

CWE ID 125

Summary

CVE-2023-6040 is an out-of-bounds access vulnerability affecting netfilter. When creating a new netfilter table, a lack of validation for invalid nf_tables family (pf) values within the `nf_tables_newtable` function allows an attacker to achieve out-of-bounds access. This issue was addressed with the commit f1082dd31fe4, which rejects tables of unsupported families to prevent potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tU-5nF
https://www.cve.org/CVERecord?id=CVE-2023-6040
https://nvd.nist.gov/vuln/detail/CVE-2023-6040

Back to Vulnerability Database

CVE-2023-6040

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations