ГлавнаяУязвимости → CVE-2023-6200
7.5высокая

CVE-2023-6200

→ есть в БДУ: BDU:2024-00926 (на русском)
Описание (на английском; русское — в БДУ выше)

A race condition was found in the Linux Kernel. Under certain conditions, an unauthenticated attacker from an adjacent network could send an ICMPv6 router advertisement packet, causing arbitrary code execution.

Затрагиваемое ПО
Linux Linux kernel
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://access.redhat.com/security/cve/CVE-2023-6200https://bugzilla.redhat.com/show_bug.cgi?id=2250377https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dade3f6a1e4ehttps://access.redhat.com/security/cve/CVE-2023-6200https://bugzilla.redhat.com/show_bug.cgi?id=2250377https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=dade3f6a1e4e