CVSS 3.1 Score 7.0 of 10 (high)


Published Nov 23, 2023
Updated: Nov 30, 2023
CWE ID 476


CVE-2023-5972 is a high-severity vulnerability, categorized as a null pointer dereference flaw in the nft_inner.c functionality of netfilter in the Linux kernel. This vulnerability affects multiple products, including tQWKpH, tQWKpG, tQWKpF, tQWKpL, tQWKpK, tQWKpJ, s4Yc5K, and others. If exploited, a local user could crash the system or escalate their privileges on the affected system. The risk score is 26 out of 100, indicating a significant potential danger to organizations. To mitigate this vulnerability, users should apply the necessary patches or updates provided by the Linux kernel developers.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-5972 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options