CVE-2023-28866

Опубликовано: 05 апр. 2023

Источник: msrc

CVSS3: 5.3

EPSS Низкий

Описание

In the Linux kernel through 6.2.8 net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element but do not.

EPSS

Процентиль: 11%

0.00037

Низкий

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2023-28866

CVSS3: 5.3

ubuntu

больше 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

CVE-2023-28866

CVSS3: 5.3

redhat

больше 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

CVE-2023-28866

CVSS3: 5.3

nvd

больше 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

CVE-2023-28866

CVSS3: 5.3

debian

больше 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out ...

GHSA-qpqg-8rvq-f5c4

CVSS3: 5.3

github

больше 2 лет назад

In the Linux kernel through 6.2.8, net/bluetooth/hci_sync.c allows out-of-bounds access because amp_init1[] and amp_init2[] are supposed to have an intentionally invalid element, but do not.

EPSS

Процентиль: 11%

0.00037

Низкий

5.3 Medium

CVSS3