Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability
CVE-2023-35001

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 5 July 2023

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2023-35001?

The nftables component of the Linux Kernel is susceptible to an Out-Of-Bounds read/write vulnerability. This flaw arises from inadequate handling of virtual memory register contents when the CAP_NET_ADMIN capability is present in any user or network namespace. Attackers could exploit this weakness, potentially leading to unauthorized access and manipulation of data within the kernel context.

Affected Version(s)

Linux Kernel Linux v3.13-rc1

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2023-35001
Created by synacktiv

nftables-oob-read-write-exploit-CVE-2023-35001-
Created by syedhafiz1234

Exploit_CVE-2023-35001
Created by mrbrelax

References

https://lore.kernel.org/netfilter-devel/20230705121515.74...

issue-tracking

https://www.openwall.com/lists/oss-security/2023/07/05/3

mailing-list

http://www.openwall.com/lists/oss-security/2023/07/05/3

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Jan 18, 2024
👾
Exploit known to exist
Jan 18, 2024
Vulnerability published
Jul 5, 2023
Vulnerability Reserved
Jun 29, 2023

Credit

Tanguy Dubroca