CVE-2023-53541
BaseFortify
Publication date: 2025-10-04
Last updated on: 2026-03-25
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 4.15 (inc) to 4.19.295 (exc) |
| linux | linux_kernel | From 5.11 (inc) to 5.15.132 (exc) |
| linux | linux_kernel | From 5.5 (inc) to 5.10.195 (exc) |
| linux | linux_kernel | From 4.20 (inc) to 5.4.257 (exc) |
| linux | linux_kernel | From 6.2 (inc) to 6.5.4 (exc) |
| linux | linux_kernel | From 5.16 (inc) to 6.1.54 (exc) |
| linux | linux_kernel | From 4.2 (inc) to 4.14.326 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a potential out-of-bounds access issue in the Linux kernel's mtd: rawnand: brcmnand driver during out-of-band (oob) write operations. Specifically, when the oob buffer length is not a multiple of words, the oob write function may read beyond the end of the oob source buffer in its last iteration. The fix involves checking the length limit on the oob buffer read and filling with 0xff when the end of the buffer is reached to prevent out-of-bounds access.
How can this vulnerability impact me? :
This vulnerability could lead to out-of-bounds memory access during oob write operations in the affected Linux kernel driver. Such out-of-bounds reads may cause system instability, crashes, or potentially allow an attacker to read unintended memory areas, which could lead to information disclosure or other unpredictable behavior.