CVE-2023-1281 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2023-1281?

CVE-2023-1281 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2023-1281?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.

Vulnerability Description

Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called with the destroyed tcf_ext. A local attacker user can use this vulnerability to elevate its privileges to root. This issue affects Linux Kernel: from 4.14 before git commit ee059170b1f7e94e55fa6cadee544e176a6e59c2.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	>= 4.14, < 5.10.169

Related Weaknesses (CWE)

CWE-416

References

http://www.openwall.com/lists/oss-security/2023/04/11/3Mailing List
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eePatchVendor Advisory
https://kernel.dance/#ee059170b1f7e94e55fa6cadee544e176a6e59c2PatchVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.htmlMailing ListThird Party Advisory
https://security.netapp.com/advisory/ntap-20230427-0004/Third Party Advisory
http://www.openwall.com/lists/oss-security/2023/04/11/3Mailing List
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=eePatchVendor Advisory
https://kernel.dance/#ee059170b1f7e94e55fa6cadee544e176a6e59c2PatchVendor Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00005.htmlMailing ListThird Party Advisory
https://lists.debian.org/debian-lts-announce/2023/05/msg00006.htmlMailing ListThird Party Advisory
https://security.netapp.com/advisory/ntap-20230427-0004/Third Party Advisory

FAQ

What is CVE-2023-1281?

CVE-2023-1281 is a vulnerability with a CVSS score of 7.8 (HIGH). Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a...

How severe is CVE-2023-1281?

CVE-2023-1281 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-1281?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.