CVE-2023-39180

MEDIUM Year: 2023
CVSS v3 Score
4.0
Medium
Weakness Type
CWE-400
View all →

Vulnerability Description

A flaw was found within the handling of SMB2_READ commands in the kernel ksmbd module. The issue results from not releasing memory after its effective lifetime. An attacker can leverage this to create a denial-of-service condition on affected installations of Linux. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable.

Related Vulnerabilities

CVE-2022-47354

MEDIUM
CVSS:4.0(Medium)

In log service, there is a missing permission check. This could lead to local denial of service in log service.

CWE-4002022

CVE-2022-47355

MEDIUM
CVSS:4.0(Medium)

In log service, there is a missing permission check. This could lead to local denial of service in log service.

CWE-4002022

CVE-2022-47356

MEDIUM
CVSS:4.0(Medium)

In log service, there is a missing permission check. This could lead to local denial of service in log service.

CWE-4002022

CVE-2024-12910

MEDIUM
CVSS:4.2(Medium)

A vulnerability in the `KnowledgeBaseWebReader` class of the run-llama/llama_index repository, version latest, allows an attacker to cause a Denial of Service (DoS) by controlling a URL variable to co...

CWE-4002024

CVE-2012-0049

MEDIUM
CVSS:4.3(Medium)

OpenTTD before 1.1.5 contains a Denial of Service (slow read attack) that prevents users from joining the server.

CWE-4002012

CVE-2016-7427

MEDIUM
CVSS:4.3(Medium)

The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packe...

CWE-4002016