CVE-2023-3268

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jun 16, 2023
Updated: Nov 7, 2023
CWE ID 200

Summary

CVE-2023-3268 is a memory access vulnerability affecting the Linux kernel. Specifically, an out-of-bounds (OOB) error was discovered in the relay_file_read_start_pos function in kernel/relay.c within the relayfs module. This issue allows a local attacker to potentially crash the system or leak sensitive kernel information by manipulating input data. The flaw could have serious consequences, including system instability or exposure of internal system details. Users are advised to apply the appropriate patch as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • python-requests
  • Fedora Operating System

Affected Vendors

  • Fedora Project
  • Python Software Foundation