High severity7.1NVD Advisory· Published Mar 29, 2023· Updated May 12, 2026

CVE-2023-1652

Description

A use-after-free flaw was found in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a kernel information leak problem.

Affected products

Linux/Kernel5 versions
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*range: >=5.14,<5.15.91
- cpe:2.3:o:linux:linux_kernel:6.2:rc1:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:6.2:rc2:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:6.2:rc3:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:6.2:rc4:*:*:*:*:*:*
Red Hat/Enterprise Linux
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Linux/Linux Kerneldescription

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

access.redhat.com/security/cve/cve-2023-1652nvdIssue TrackingPatchThird Party Advisory
security.netapp.com/advisory/ntap-20230511-0006/nvdThird Party Advisory
cert-portal.siemens.com/productcert/html/ssa-265688.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.461
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000