CVE-2023-3865
BaseFortify
Publication date: 2025-08-16
Last updated on: 2025-11-18
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | 6.4 |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-125 | The product reads data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an out-of-bound (OOB) read issue in the Linux kernel's ksmbd component related to the SMB2 protocol. Specifically, the function ksmbd_smb2_check_message does not properly validate the NextCommand field in the SMB2 write request header. If NextCommand is larger than the sum of Offset and Length of the SMB2 write, it allows an oversized SMB2 write length, which leads to an out-of-bound read in the smb2_write function.
How can this vulnerability impact me? :
The out-of-bound read vulnerability can potentially lead to information disclosure or cause the system to behave unexpectedly, such as crashing or leaking sensitive data from memory. This can compromise system stability and security.