CVE-2023-7324

high

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible addl_desc_ptr out-of-bounds accesses Sanitize possible addl_desc_ptr out-of-bounds accesses in ses_enclosure_data_process().

References

https://git.kernel.org/stable/c/db95d4df71cb55506425b6e4a5f8d68e3a765b63

https://git.kernel.org/stable/c/b91ef85a32fdba45fcbad87dd526d73d3b6d857d

https://git.kernel.org/stable/c/af5114d824f3511a69d68beff49ca9a7c32d44e0

https://git.kernel.org/stable/c/a156a262c543fa5ff30bcb2fc6ad1a95cb4ab57a

https://git.kernel.org/stable/c/8e454aba72805241239caf8ba9b8e5a6be772b96

https://git.kernel.org/stable/c/384aa697d8f2a28b5e962f5292cdfd2e528b5df7

https://git.kernel.org/stable/c/2ecd344173a5663d523433819da0484cb268b186

https://git.kernel.org/stable/c/27067c672980b497cc34048b69b12820851ac6b9

Details

Source: Mitre, NVD

Published: 2025-10-29

Updated: 2025-10-30

Risk Information

CVSS v2

Base Score: 6.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00024

Detections

Analytics