CVE-2023-6531

CVSS 3.1 Score 7.0 of 10 (high)

Details

Published Jan 21, 2024
Updated: Jan 29, 2024
CWE ID 362

Summary

CVE-2023-6531 is a high-severity vulnerability categorized as CWE-362 (Concurrent Execution using Shared Resource with Improper Synchronization - Race Condition). It affects various products, including those with the following IDs: Qtrc2o, ohMfk4, Qtrc2i, ohMfk3, ohMfk2, Qtrc2m, QtrdW7, ohMfku, Qtrc2_, QtrdW-, and many more. The vulnerability is due to a use-after-free flaw in the Linux Kernel caused by a race problem in the unix garbage collector's deletion of SKB races with unix_stream_read_generic() on the socket that the SKB is queued on. The danger it poses to organizations is high, as it has a base score of 7.0 and impacts integrity and confidentiality. Remediation steps have not been provided.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6531 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options