Skip to main content

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

Professional cybersecurity intelligence

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

About Sources Sponsored Articles Status Legal Terms

v2.3.3•© 2026

Telegram Bluesky GitHub Contact

Return to CVE list

CVE-2023-32233

CVE-2023-32233

7.8

High

Published:8 May 2023

Last updated:17 Jun 2026

Source:cve@mitre.org

Modified

Weakness (CWE)

CWE-416Use After Free

CVSS Vector

v3.1

Attack Vector: Local
Attack Complexity: Low
Privileges Required: Low
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

View on MITRE Find PoC on GitHub

Description

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.

References

cve@mitre.org

http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html

cve@mitre.org

http://www.openwall.com/lists/oss-security/2023/05/15/5

cve@mitre.org

https://bugzilla.redhat.com/show_bug.cgi?id=2196105

cve@mitre.org

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c1592a89942e9678f7d9c8030efa777c0d57edab

cve@mitre.org

https://github.com/torvalds/linux/commit/c1592a89942e9678f7d9c8030efa777c0d57edab

cve@mitre.org

https://lists.debian.org/debian-lts-announce/2023/06/msg00008.html

cve@mitre.org

https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html

cve@mitre.org

https://news.ycombinator.com/item?id=35879660

cve@mitre.org

https://security.netapp.com/advisory/ntap-20230616-0002/

cve@mitre.org

https://www.debian.org/security/2023/dsa-5402

cve@mitre.org

https://www.openwall.com/lists/oss-security/2023/05/08/4

af854a3a-2127-422b-91ae-364da2661108

http://packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html

af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2023/05/15/5

af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=2196105

af854a3a-2127-422b-91ae-364da2661108

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c1592a89942e9678f7d9c8030efa777c0d57edab

af854a3a-2127-422b-91ae-364da2661108

https://github.com/torvalds/linux/commit/c1592a89942e9678f7d9c8030efa777c0d57edab

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2023/06/msg00008.html

af854a3a-2127-422b-91ae-364da2661108

https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html

af854a3a-2127-422b-91ae-364da2661108

https://news.ycombinator.com/item?id=35879660

af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20230616-0002/

af854a3a-2127-422b-91ae-364da2661108

https://www.debian.org/security/2023/dsa-5402

af854a3a-2127-422b-91ae-364da2661108

https://www.openwall.com/lists/oss-security/2023/05/08/4