CVE-2023-32254 : A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB s

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_TREE_DISCONNECT commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to execute code in the context of the kernel.

Published 2023-07-10 16:15:52

Updated 2024-08-21 18:21:56

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2023-32254

Linux » Linux Kernel
Versions from including (>=) 5.16 and before (<) 6.1.28
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.2.15
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.3 and before (<) 6.3.2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 5.15 and before (<) 5.15.145
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Netapp » Hci Management Node » Version: N/A
cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*
Matching versions
Netapp » H300s » Version: N/A
cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H500s » Version: N/A
cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H700s » Version: N/A
cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*
Matching versions
Netapp » H410s » Version: N/A
cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2023-32254

EPSS FAQ

0.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 21 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2023-32254

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
8.1	HIGH	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H	2.2	5.9	NIST
Attack Vector: Network Attack Complexity: High Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	3.9	5.9	Red Hat, Inc.
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2023-32254

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.
Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)

References for CVE-2023-32254

https://bugzilla.redhat.com/show_bug.cgi?id=2191658

2191658 – (CVE-2023-32254, ZDI-23-702, ZDI-CAN-20592) CVE-2023-32254 kernel: ksmbd: tree connection race condition remote code execution vulnerability
Issue Tracking;Patch;Third Party Advisory
https://access.redhat.com/security/cve/CVE-2023-32254

CVE-2023-32254- Red Hat Customer Portal
Third Party Advisory
https://www.zerodayinitiative.com/advisories/ZDI-23-702/

ZDI-23-702 | Zero Day Initiative
Patch;Third Party Advisory;VDB Entry
https://security.netapp.com/advisory/ntap-20230824-0004/

July 2023 Linux Kernel 6.4 Vulnerabilities in NetApp Products | NetApp Product Security
Third Party Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2023-32254

Products affected by CVE-2023-32254

Exploit prediction scoring system (EPSS) score for CVE-2023-32254

CVSS scores for CVE-2023-32254

CWE ids for CVE-2023-32254

References for CVE-2023-32254