Reconnecting to live updates…

CVE-2023-45896: n/a

High

VulnerabilityCVE-2023-45896cve cve-2023-45896

Published: Wed Aug 28 2024 (08/28/2024, 00:00:00 UTC)

Source: CVE Database V5

Description

ntfs3 in the Linux kernel through 6.8.0 allows a physically proximate attacker to read kernel memory by mounting a filesystem (e.g., if a Linux distribution is configured to allow unprivileged mounts of removable media) and then leveraging local access to trigger an out-of-bounds read. A length value can be larger than the amount of memory allocated. NOTE: the supplier's perspective is that there is no vulnerability when an attack requires an attacker-modified filesystem image.

Technical Details

Data Version: 5.2
Assigner Short Name: mitre
Date Reserved: 2023-10-16T00:00:00.000Z
Cvss Version: 3.1
State: PUBLISHED

Threat ID: 69092635fe7723195e0b61e6

Added to database: 11/3/2025, 10:01:25 PM

Last updated: 11/3/2025, 10:03:47 PM

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by

Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.