Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-2166

Опубликовано: 19 апр. 2023
Источник: nvd
CVSS3: 5.5
EPSS Низкий

Описание

A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 6.1 (исключая)
cpe:2.3:o:linux:linux_kernel:6.1:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc4:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc5:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.1:rc8:*:*:*:*:*:*

EPSS

Процентиль: 0%
0.00007
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476
CWE-476
CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2023-2166

CVSS3: 5.5
ubuntu
около 2 лет назад

A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.

redhat логотип

CVE-2023-2166

CVSS3: 5.5
redhat
больше 2 лет назад

A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.

msrc логотип

CVE-2023-2166

CVSS3: 5.5
msrc
около 2 лет назад

Описание отсутствует

debian логотип

CVE-2023-2166

CVSS3: 5.5
debian
около 2 лет назад

A null pointer dereference issue was found in can protocol in net/can/ ...

github логотип

GHSA-f7h3-2rcm-qw98

CVSS3: 5.5
github
около 2 лет назад

A null pointer dereference issue was found in can protocol in net/can/af_can.c in the Linux before Linux. ml_priv may not be initialized in the receive path of CAN frames. A local user could use this flaw to crash the system or potentially cause a denial of service.

EPSS

Процентиль: 0%
0.00007
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476
CWE-476
CWE-476