CVE-2023-53206

MEDIUM

Linux kernel - Null Pointer Dereference

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (pmbus_core) Fix NULL pointer dereference Pass i2c_client to _pmbus_is_enabled to drop the assumption that a regulator device is passed in. This will fix the issue of a NULL pointer dereference when called from _pmbus_get_flags.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/7444253cacd92412bc8d33d1c9b5401f52cdf0e2

Patch

https://git.kernel.org/stable/c/0bd66784274a287beada2933c2c0fa3a0ddae0d7

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-476

Status published

Products (8)

Linux/Linux < 6.4

Linux/Linux 6.4

Linux/Linux 6.4.8 - 6.4.*

Linux/Linux 6.5

Linux/Linux df5f6b6af01ca326dd4babb287c9580fed0ad3d6 - 0bd66784274a287beada2933c2c0fa3a0ddae0d7

Linux/Linux df5f6b6af01ca326dd4babb287c9580fed0ad3d6 - 7444253cacd92412bc8d33d1c9b5401f52cdf0e2

linux/linux_kernel 6.5 rc1 (3 CPE variants)

linux/linux_kernel 6.4 - 6.4.8

Published Sep 15, 2025

Tracked Since Feb 18, 2026