Vulnerability in Linux Kernel
CVE-2023-1295
A time-of-check to time-of-use issue exists in io_uring subsystem's IORING_OP_CLOSE operation in the Linux kernel's versions 5.6 - 5.11 (inclusive), which allows a local user to elevate their privileges to root. Introduced in b5dba59e0cf7e…
Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)
EPSS: 0.000 (6.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Linux Kernel — versions 5.6
Weakness classification (CWE)
Public proof-of-concept exploits
References
- git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/ (patch)
- git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/ (patch)
- kernel.dance/9eac1904d3364254d622bf2c771c4f85cd435fc2
- kernel.dance/788d0824269bef539fe31a785b1517882eafed93
- git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/ (related)
- security.netapp.com/advisory/ntap-20230731-0006/
Frequently asked questions
- What is CVE-2023-1295?
- CVE-2023-1295 is a high-severity vulnerability in Linux Kernel, classified under Time-of-check Time-of-use (TOCTOU) Race Condition. CVSS score: 7.8/10. Published 2023-06-28.
- How severe is CVE-2023-1295?
- High severity. CVSS v3 base score is 7.8 out of 10.
- Is CVE-2023-1295 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.