CVE-2023-32250 : A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB s

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_SESSION_SETUP commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to execute code in the context of the kernel.

Published 2023-07-10 16:15:52

Updated 2024-08-21 18:17:14

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2023-32250

Linux » Linux Kernel
Versions from including (>=) 6.3 and before (<) 6.3.2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.15 and before (<) 5.15.145
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.16 and before (<) 6.1.29
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.2.16
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Storage Nodes » Version: N/A
cpe:2.3:a:netapp:hci_storage_nodes:-:*:*:*:*:*:*:*
Matching versions
Netapp » HCI » Version: N/A
cpe:2.3:a:netapp:hci:-:*:*:*:*:*:*:*
Matching versions
Netapp » H300s » Version: N/A
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H500s » Version: N/A
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H700s » Version: N/A
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H410s » Version: N/A
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-32250

EPSS FAQ

0.10%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 30 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-32250

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
8.1	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	2.2	5.9	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.0	CRITICAL	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H	2.2	6.0	Red Hat, Inc.
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-32250

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.
Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)

References for CVE-2023-32250

https://security.netapp.com/advisory/ntap-20230824-0004/

July 2023 Linux Kernel 6.4 Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url
https://access.redhat.com/security/cve/CVE-2023-32250

CVE-2023-32250- Red Hat Customer Portal
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-23-698/

ZDI-23-698 | Zero Day Initiative
Third Party Advisory;VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=2208849

2208849 – (CVE-2023-32250, ZDI-23-698, ZDI-CAN-20481) CVE-2023-32250 kernel: ksmbd: session race condition remote code execution vulnerability
Issue Tracking;Patch;Third Party Advisory

Jump to

Vulnerability Details : CVE-2023-32250

Products affected by CVE-2023-32250

Exploit prediction scoring system (EPSS) score for CVE-2023-32250

CVSS scores for CVE-2023-32250

CWE ids for CVE-2023-32250

References for CVE-2023-32250