CVE-2023-3390

HIGH

Linux Kernel 3.16-4.14.321 - Use-After-Free in netfilter nf_tables_api.c

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-3390. PoCs published by flygonty.

AI-analyzed exploit summary This PoC exploits CVE-2023-3390, a vulnerability in the Linux kernel's nf_tables subsystem, by creating a faulty lookup rule that triggers a use-after-free condition. The exploit constructs malicious netfilter rules to achieve denial-of-service or potential privilege escalation.

Description

A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This flaw allows a local attacker with user access to cause a privilege escalation issue. We recommend upgrading past commit 1240eb93f0616b21c675416516ff3d74798fdc97.

Exploits (1)

nomisec WORKING POC 2 stars

by flygonty · poc

https://github.com/flygonty/CVE-2023-3390_PoC

View Code ZIP pw:eip

This PoC exploits CVE-2023-3390, a vulnerability in the Linux kernel's nf_tables subsystem, by creating a faulty lookup rule that triggers a use-after-free condition. The exploit constructs malicious netfilter rules to achieve denial-of-service or potential privilege escalation.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel (nf_tables subsystem)

No auth needed

Prerequisites: Access to a system with a vulnerable Linux kernel (nf_tables subsystem) · Ability to execute code with sufficient permissions to manipulate netfilter rules

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →