CVEs-PoC/2023/CVE-2023-5345.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-04 01:28:01 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation.In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the field was not set to NULL which could lead to double free.We recommend upgrading past commit e6e43b8aa7cd3c3af686caf0c2e11819a886d705.

POC

Reference

http://packetstormsecurity.com/files/177029/Kernel-Live-Patch-Security-Notice-LSN-0100-1.html

Github

https://github.com/Lotuhu/Page-UAF
https://github.com/fkie-cad/nvd-json-data-feeds
https://github.com/shakyaraj9569/Documentation
https://github.com/x-s-g/Vuln-Intro

1.0 KiB Raw Blame History

CVE-2023-5345

Description

POC

Reference

Github

1.0 KiB

Raw Blame History