CVE-2023-6610

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Dec 8, 2023

Updated: Jul 8, 2024

CWE ID 125

Summary

CVE-2023-6610 is an out-of-bounds read vulnerability identified in the Linux Kernel's smb2_dump_detail function, located in fs/smb/client/smb2ops.c. This issue puts local systems at risk as an attacker could exploit it to cause a system crash or potentially leak sensitive internal kernel information. The vulnerability arises due to incorrect handling of data during the SMB2 protocol processing, enabling an adversary to read beyond the intended memory boundary.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Red Hat Enterprise Linux
Linux Kernel

Affected Vendors

Red Hat
LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tu8UWq
https://www.cve.org/CVERecord?id=CVE-2023-6610
https://nvd.nist.gov/vuln/detail/CVE-2023-6610

Back to Vulnerability Database