CVE-2023-5536

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Dec 12, 2023
Updated: Dec 18, 2023
CWE ID 276

Summary

CVE-2023-5536 is a vulnerability in LXD that affects the default configuration of Ubuntu Server. It allows privileged users in the lxd group to escalate their privilege to root without requiring a sudo password. The vulnerability has a base severity rating of MEDIUM, with a base score of 6.4. It has a high impact on integrity and confidentiality, and it can be exploited locally with high privileges required. The vulnerability poses potential danger to organizations using affected products by allowing unauthorized users to gain root access and potentially compromise the system. It is recommended to apply patches or updates provided by the vendor to remediate this vulnerability and mitigate the risk it poses to organizations.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5536 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options