CVE-2023-5197

MEDIUM Year: 2023
CVSS v3 Score
6.6
Medium
Weakness Type
CWE-416
View all →

Vulnerability Description

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Addition and removal of rules from chain bindings within the same transaction causes leads to use-after-free. We recommend upgrading past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325.

Related Vulnerabilities

CVE-2017-16525

MEDIUM
CVSS:6.6(Medium)

The usb_serial_console_disconnect function in drivers/usb/serial/console.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free and system crash) or possib...

CWE-4162017

CVE-2017-16527

MEDIUM
CVSS:6.6(Medium)

sound/usb/mixer.c in the Linux kernel before 4.13.8 allows local users to cause a denial of service (snd_usb_mixer_interrupt use-after-free and system crash) or possibly have unspecified other impact ...

CWE-4162017

CVE-2017-16528

MEDIUM
CVSS:6.6(Medium)

sound/core/seq_device.c in the Linux kernel before 4.13.4 allows local users to cause a denial of service (snd_rawmidi_dev_seq_free use-after-free and system crash) or possibly have unspecified other ...

CWE-4162017

CVE-2017-16648

MEDIUM
CVSS:6.6(Medium)

The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possibl...

CWE-4162017

CVE-2019-6556

MEDIUM
CVSS:6.6(Medium)

When processing project files, the application (Omron CX-Programmer v9.70 and prior and Common Components January 2019 and prior) fails to check if it is referencing freed memory. An attacker could us...

CWE-4162019

CVE-2021-37690

MEDIUM
CVSS:6.6(Medium)

TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions (such as `MutableHashTableShape`) produce extra output informat...

CWE-4162021