CVE-2023-6660

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 13, 2023
Updated: Mar 22, 2024

Summary

CVE-2023-6660 is a cyber vulnerability that affects the NFS client. When a program appends data to a file via an NFS client mount, this bug can cause the NFS client to fail in copying the data correctly, resulting in the data being replaced with previously stored data from the packet buffer. This vulnerability could be exploited by an unprivileged user to gain access to sensitive information stored on the affected system. Additionally, system applications unintentionally triggering this bug can lead to corrupted data being written over the network to the NFS server, making it susceptible to interception by other hosts on the network. The base severity of this vulnerability is rated as MEDIUM with a CVSS score of 6.5 and a confidentiality impact of HIGH.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6660 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options