CVE-2023-52641

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 3, 2024

Updated: Jan 7, 2025

CWE ID 476

Summary

CVE-2023-52641 is a vulnerability affecting the Linux kernel's NTFS file system. The issue involves a null pointer dereference in the function attr_allocate_frame(). This flaw could potentially be exploited to cause system crashes or gain unauthorized access. To mitigate this risk, the recommended approach is to exit the function through the designated out: label instead of relying on internal debugging functions located thereafter. By doing so, the system can avoid triggering the null pointer dereference and prevent potential exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uxuGEW
https://www.cve.org/CVERecord?id=CVE-2023-52641
https://nvd.nist.gov/vuln/detail/CVE-2023-52641

Back to Vulnerability Database

CVE-2023-52641

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations