Executive Summary

Informations
Name CVE-2023-45896 First vendor Publication 2024-08-28
Vendor Cve Last vendor Modification 2024-11-01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

ntfs3 in the Linux kernel through 6.8.0 allows a physically proximate attacker to read kernel memory by mounting a filesystem (e.g., if a Linux distribution is configured to allow unprivileged mounts of removable media) and then leveraging local access to trigger an out-of-bounds read. A length value can be larger than the amount of memory allocated. NOTE: the supplier's perspective is that there is no vulnerability when an attack requires an attacker-modified filesystem image.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45896

Sources (Detail)

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.11
https://dfir.ru/2024/06/19/vulnerabilities-in-7-zip-and-ntfs3/
https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=01...
https://github.com/torvalds/linux/commit/013ff63b649475f0ee134e2c8d0c8e65284e...
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2024-11-01 13:27:56
  • Multiple Updates
2024-09-04 21:27:32
  • Multiple Updates
2024-08-30 02:56:42
  • Multiple Updates
2024-08-30 02:51:32
  • Multiple Updates
2024-08-29 14:00:09
  • Multiple Updates
2024-08-29 13:55:27
  • Multiple Updates
2024-08-29 02:58:05
  • Multiple Updates
2024-08-29 02:53:04
  • Multiple Updates
2024-08-28 17:27:28
  • Multiple Updates
2024-08-28 13:27:28
  • First insertion