CVE-2023-3338

MEDIUM

Linux Kernel < 6.5 - Denial of Service via DECnet Null Pointer Dereference

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-3338. PoCs published by TurtleARM.

AI-analyzed exploit summary This repository contains a functional local privilege escalation (LPE) exploit for CVE-2023-3338, targeting a vulnerability in the Linux kernel's DECnet implementation. The exploit demonstrates multiple techniques, including syscall hooking, ROP chains, and usermode helper manipulation, to achieve root privileges under various kernel protection scenarios.

Description

A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol. This issue could allow a remote user to crash the system.

Exploits (1)

nomisec WORKING POC 36 stars

by TurtleARM · poc

https://github.com/TurtleARM/CVE-2023-3338-DECPwn

View Code ZIP pw:eip

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2023-3338, targeting a vulnerability in the Linux kernel's DECnet implementation. The exploit demonstrates multiple techniques, including syscall hooking, ROP chains, and usermode helper manipulation, to achieve root privileges under various kernel protection scenarios.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Complex

Reliability

Reliable

Target: Linux kernel (specific versions with DECnet enabled)

No auth needed

Prerequisites: DECnet enabled in the kernel · Ability to set vm.mmap_min_addr to 0 · Root access to configure DECnet node address (for initial setup)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7

Core References

Mailing List, Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/07/msg00030.html

Mailing List, Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html

Exploit, Mailing List, Third Party Advisory

https://seclists.org/oss-sec/2023/q2/276

Third Party Advisory

https://security.netapp.com/advisory/ntap-20230824-0005/

Third Party Advisory

https://www.debian.org/security/2023/dsa-5480

Third Party Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2023-3338

Issue Tracking issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2218618

Scores

CVSS v3 6.5

EPSS 0.0809

EPSS Percentile 94.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (4)

debian/debian_linux 10.0

debian/debian_linux 11.0

linux/linux_kernel < 6.5

netapp/active_iq_unified_manager

Published Jun 30, 2023

Tracked Since Feb 18, 2026