VYPR
Unrated severityNVD Advisory· Published Oct 9, 2023· Updated Nov 6, 2025

Kernel: netfilter: xtables sctp out-of-bounds read in match_flags()

CVE-2023-39193

Description

A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

295

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.