CVE-2023-52479

high

Description

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix uaf in smb20_oplock_break_ack drop reference after use opinfo.

References

https://git.kernel.org/stable/c/d5b0e9d3563e7e314a850e81f42b2ef6f39882f9

https://git.kernel.org/stable/c/c69813471a1ec081a0b9bf0c6bd7e8afd818afce

https://git.kernel.org/stable/c/8226ffc759ea59f10067b9acdf7f94bae1c69930

https://git.kernel.org/stable/c/694e13732e830cbbfedb562e57f28644927c33fd

Details

Source: Mitre, NVD

Published: 2024-02-29

Updated: 2025-03-19

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00071