CVE-2023-7192
MEDIUMLinux Kernel < 6.3 - Memory Leak
Title source: ruleDescription
A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This issue may allow a local attacker with CAP_NET_ADMIN privileges to cause a denial of service (DoS) attack due to a refcount overflow.
References (13)
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
5.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Classification
CWE
CWE-401
Status
published
Affected Products (3)
linux/linux_kernel
< 6.3
redhat/enterprise_linux
redhat/enterprise_linux
Timeline
Published
Jan 02, 2024
Tracked Since
Feb 18, 2026