CVE-2023-6817

Published: Dic 18, 2023 Last Modified: Feb 13, 2025 EU-VD ID: EUVD-2023-59027 Aliases: GSD-2023-6817
ExploitDB:
Other exploit source:
Google Dorks:
HIGH 7,8
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high

Description

AI Translation Available

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The function nft_pipapo_walk did not skip inactive elements during set walk which could lead double deactivations of PIPAPO (Pile Packet Policies) elements, leading to use-after-free.

We recommend upgrading past commit 317eb9685095678f2c9f5a8189de698c5354316a.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0002
Percentile
0,1th
Updated

EPSS Score Trend (Last 91 Days)

416

Use After Free

Stable
Abstraction: Variant Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Availability Confidentiality
Potential Impacts:
Modify Memory Dos: Crash, Exit, Or Restart Execute Unauthorized Code Or Commands
Applicable Platforms
Languages: C, C++, Memory-Unsafe
Likelihood of Exploit: High
View CWE Details
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 6.2 (inclusive)
To 6.6.7 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 6.7
cpe:2.3:o:linux:linux_kernel:6.7:rc1:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 6.7
cpe:2.3:o:linux:linux_kernel:6.7:rc4:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.11 (inclusive)
To 5.15.143 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.6 (inclusive)
To 5.10.204 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 6.7
cpe:2.3:o:linux:linux_kernel:6.7:rc3:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version Range Affected
From 5.16 (inclusive)
To 6.1.68 (exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Linux Kernel by Linux

Product Information
Vendor Linux
Product Linux Kernel
Version 6.7
cpe:2.3:o:linux:linux_kernel:6.7:rc2:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://packetstormsecurity.com/files/177029/Kernel-Live-Pat…
http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-L…
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/li…
Mailing List Patch
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3…
https://kernel.dance/317eb9685095678f2c9f5a8189de698c535431…
Patch
https://kernel.dance/317eb9685095678f2c9f5a8189de698c5354316a
https://lists.debian.org/debian-lts-announce/2024/01/msg000…
https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html
http://www.openwall.com/lists/oss-security/2023/12/22/13
http://www.openwall.com/lists/oss-security/2023/12/22/13
http://www.openwall.com/lists/oss-security/2023/12/22/6
http://www.openwall.com/lists/oss-security/2023/12/22/6
http://packetstormsecurity.com/files/177029/Kernel-Live-Pat…
http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-L…
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/li…
Mailing List Patch
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=3…
https://kernel.dance/317eb9685095678f2c9f5a8189de698c535431…
Patch
https://kernel.dance/317eb9685095678f2c9f5a8189de698c5354316a
https://lists.debian.org/debian-lts-announce/2024/01/msg000…
https://lists.debian.org/debian-lts-announce/2024/01/msg00005.html
http://www.openwall.com/lists/oss-security/2023/12/22/13
http://www.openwall.com/lists/oss-security/2023/12/22/13
http://www.openwall.com/lists/oss-security/2023/12/22/6
http://www.openwall.com/lists/oss-security/2023/12/22/6