CVSS 3.1 Score 5.5 of 10 (medium)


Published Jan 15, 2024
Updated: Feb 6, 2024
CWE ID 476


CVE-2023-6915 is a vulnerability that affects multiple products, including the Linux Kernel. It is categorized as a NULL pointer dereference vulnerability (CWE-476) and has a base severity of MEDIUM with a base score of 5.5. The exploitability score is 1.8, indicating low privileges required and no user interaction needed. The attack vector is local, and the impact on integrity and confidentiality is none. However, it poses a high availability impact. The vulnerability allows an attacker to cause a denial of service by exploiting a missing check in the ida_free function in lib/idr.c in the Linux Kernel. The remediation for this vulnerability is not specified in the provided information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-6915 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options