Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.8
CVSSv3

CVE-2023-32233

Published: 08/05/2023 Updated: 28/09/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Linux

Vulnerability Summary

In the Linux kernel up to and including 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

redhat enterprise linux 7.0

redhat enterprise linux 8.0

redhat enterprise linux 9.0

netapp hci baseboard management controller h300s

netapp hci baseboard management controller h500s

netapp hci baseboard management controller h700s

netapp hci baseboard management controller h410s

netapp hci baseboard management controller h410c

Vendor Advisories

Debian Security Advisories: DSA-5402-1 linux -- security update
Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2023-0386 It was discovered that under certain conditions the overlayfs filesystem implementation did not properly handle copy up operations A local user permitted to mount overlay mount ...
Amazon Linux AMI: ALAS-2023-1750
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Red Hat:
Description<!---->A use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_apic) in the Linux kernel This flaw allows unprivileged local users to execute arbitrary kernel code, possibly leading to an information leak issueA use-after-free flaw was found in the Netfilter nf_tables (net/netfilter/nf_tables_apic) in the ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Produ ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this upd ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Produ ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this upd ...
Red Hat: Important: OpenShift Virtualization 4.13.3 Images security and bug fix update
Synopsis Important: OpenShift Virtualization 4133 Images security and bug fix update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Virtualization release 4133 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type / Sévérité Security Advisory: Important Analyse des correctifs dans Red Hat Insights Identifiez et remédiez aux systèmes concernés par cette alerte Voir les systèmes concernés Sujet An update for kernel is now available for Red Hat Enterprise Linux 77 Advanced Update Support ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 82 Telecommunications Update ServiceRed Hat ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch-4_18_0-193_100_1, kpatch-patch-4_18_0-193_105_1, kpatch-patch-4_18_0-193_95_1, and kpatch-patch-4 ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 82 Advanced Update Support, Red Hat Enterprise Lin ...
Red Hat: Important: kpatch-patch security update
Synopsis Important: kpatch-patch security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kpatch-patch is now available for Red Hat Enterprise Linux 90 Extended Update SupportRed Hat Product Securit ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 74 Advanced Update SupportRed Hat Product Security has rated ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 76 Advanced Update SupportRed Hat Product Security has rated ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as ...
Red Hat: Important: kernel-rt security and bug fix update
概要 Important: kernel-rt security and bug fix update タイプ/重大度 Security Advisory: Important Red Hat Insights パッチ分析 このアドバイザリーの影響を受けるシステムを特定し、修正します。 影響を受けるシステムの表示 トピック An update for kernel-rt is now available for Red ...
Red Hat: Important: OpenShift Container Platform 4.11.45 bug fix and security update
Synopsis Important: OpenShift Container Platform 41145 bug fix and security update Type/Severity Security Advisory: Important Topic Red Hat OpenShift Container Platform release 41145 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift ...
Google Chrome: Long Term Support Channel Update for ChromeOS
LTS-108 is being updated in the LTS channel to&nbsp;10805359235&nbsp;(Platform Version:&nbsp;15183980) for most ChromeOS devices Want to know more about Long Term Support? Click&nbsp;hereThis update contains multiple Security fixes, including:1450481&nbsp;High&nbsp;&nbsp;CVE-2023-3079&nbsp;Type Confusion in V81440695&nbsp;High&nbsp;CVE-2023- ...
Amazon Linux 2: ALAS2KERNEL-5.10-2023-033
A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctlc in the Linux Kernel Device Mapper-Multipathing sub-component (CVE-2023-2269) In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-122
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Amazon Linux 2: ALAS2KERNEL-5.15-2023-020
A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctlc in the Linux Kernel Device Mapper-Multipathing sub-component (CVE-2023-2269) In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to ...
Amazon Linux 2: ALAS2-2023-2050
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-125
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4filec in the Linux kernel This flaw allows an attacker to conduct a remote denial of service (CVE-2022-4379) In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write opera ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-124
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-123
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Amazon Linux 2: ALAS2KERNEL-5.4-2023-046
In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory Unprivileged local users can obtain root privileges This occurs because anonymous sets are mishandled (CVE-2023-32233) ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-127
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4filec in the Linux kernel This flaw allows an attacker to conduct a remote denial of service (CVE-2022-4379) In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write opera ...
Amazon Linux 2: ALAS2LIVEPATCH-2023-126
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4filec in the Linux kernel This flaw allows an attacker to conduct a remote denial of service (CVE-2022-4379) In the Linux kernel through 631, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write opera ...
Brocade Security Advisories: Access Denied
Menu Log in ...
Brocade Security Advisories: Access Denied
Menu Log in ...

ICS Advisories

https://ics-cert.us-cert.gov/advisories/0600b443ff4393d097c485fbc8d3ed3b
Critical Infrastructure Sectors: Critical Manufacturing

Github Repositories

https://github.com/djki5s/tools

tools It is a reference to POC-CVE-2023-32233 , i was seeing that is was made for ubuntu 23 I was modifing the source and test it in a centos 8 Stuff to do or need it : sudo yum install libmnl-devel libnftnl-devel -y sudo yum install epel-release -y sudo yum groupinstall "Development Tools" -y sudo update -y gcc -Wall -o exploit exploitc -lmnl -lnftnl -lpthread /e

https://github.com/sirhc505/CVE_TOOLS

CVE Tools CVE Tools Purpose ITS CVE - 2023 - 32233 Detection Script The CVE CVE-ID Description References Assigning CNA Date Record Created Phase (Legacy) detect-sprysh Created By: Version: Purpose These are a collection of scripts that I wrote to help the Linux Admin team with certain CVEs ITS CVE - 2023 - 32233 Detection Script This script will detect the affl

https://github.com/void0red/CVE-2023-32233

CVE-2023-32233 5x内核适配 现有EXP githubcom/Liuk3r/CVE-2023-32233/tree/main githubcom/google/security-research/tree/master/pocs/linux/kernelctf/CVE-2023-32233_mitigation 原因 由于低版本(&lt;516)内核中缺少了补丁,导致无法使用nft_quota结构体的consumed字段来写读写内存地址,考虑使用rop的方法进行提权

References

CWE-416https://github.com/torvalds/linux/commit/c1592a89942e9678f7d9c8030efa777c0d57edabhttps://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c1592a89942e9678f7d9c8030efa777c0d57edabhttps://www.openwall.com/lists/oss-security/2023/05/08/4https://bugzilla.redhat.com/show_bug.cgi?id=2196105https://news.ycombinator.com/item?id=35879660https://www.debian.org/security/2023/dsa-5402http://www.openwall.com/lists/oss-security/2023/05/15/5https://lists.debian.org/debian-lts-announce/2023/06/msg00008.htmlhttps://security.netapp.com/advisory/ntap-20230616-0002/http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.htmlhttps://lists.debian.org/debian-lts-announce/2023/07/msg00030.htmlhttps://nvd.nist.govhttps://www.debian.org/security/2023/dsa-5402https://www.cisa.gov/news-events/ics-advisories/icsa-24-046-11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2024-34490SQL injectionCVE-2024-34488CVE-2024-4507CVE-2023-7028CVE-2024-23187TCPCVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook