CVE-2023-47233

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 3, 2023
Updated: Jun 27, 2024
CWE ID 416

Summary

CVE-2023-47233 is a vulnerability affecting the brcm80211 component in the Linux kernel up to version 6.5.10. This issue involves a use-after-free vulnerability in the brcmf_cfg80211_detach function, specifically in the device unplugging (disconnecting USB) code. For attackers with local access, this flaw could potentially be exploited in real-world scenarios. The vulnerability is located in the brcmf_cfg80211_escan_timeout_worker function, which is part of drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c. Successful exploitation could lead to unspecified impacts on the system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share