CVE-2023-52519

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Mar 2, 2024

Updated: Jan 13, 2025

CWE ID 125

Summary

CVE-2023-52519 is a vulnerability affecting the Linux kernel's intel-ish-hid driver. This issue lies in the way the driver handles the ACPI GPE bit during system resumes. On certain EHL (Elkhart Lake) based platforms, the BIOS clears the wakeup bit upon resumption from S5 state, requiring the driver to re-enable it for the next wakeup capability. However, this action does not decrement the OS GPE reference count, leading to an overflow and potential security implications. To mitigate this issue, the vulnerability has been resolved by disabling and re-enabling the ACPI GPE bit using acpi_disable_gpe().

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ullBYB
https://www.cve.org/CVERecord?id=CVE-2023-52519
https://nvd.nist.gov/vuln/detail/CVE-2023-52519

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2023-52519

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations