CVE-2023-4389

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Aug 16, 2023
Updated: Dec 22, 2023
CWE ID 415

Summary

CVE-2023-4389 is a vulnerability affecting the btrfs filesystem in the Linux Kernel. The issue lies in the function btrfs_get_root_ref within fs/btrfs/disk-io.c, where a double decrement of the reference count occurs. This flaw can enable a local attacker with user privileges to cause a system crash or potentially leak sensitive internal kernel information.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share