CVE-2023-46343

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux Kernel
Vendor: CVE Published:; 23 January 2024

Summary

In the Linux kernel before 6.5.9, there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.

References

https://lore.kernel.org/netdev/20231013184129.18738-1-krz...

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.9

https://github.com/torvalds/linux/commit/7937609cd387246a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 23, 2024
Vulnerability Reserved
Oct 23, 2023

Collectors

NVD DatabaseMitre Database

.