Linux Kernel CVE Statistics
39 Linux Kernel CVEs in July 2023
Full month · Source: NIST NVD
In July 2023, 39 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 7 were rated Critical, 19 were rated High severity and 13 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. July's 39 CVEs represent 13% of all 2023 Linux kernel CVEs , up from June's 31 (a 26% month-over-month increase) .
39
Total CVEs
7
Critical
19
High
13
Medium
0
Low
0
KEV Exploited
All CVEs — July 2023
39 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2023-38427 | linux | Critical | 9.8 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and… | |
| CVE-2023-38429 | linux | Critical | 9.8 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/connection.c in ksmbd has an off-by-one error in mem… | |
| CVE-2023-38426 | linux | Critical | 9.1 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals whe… | |
| CVE-2023-38432 | linux | Critical | 9.1 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the rela… | |
| CVE-2023-38428 | linux | Critical | 9.1 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserN… | |
| CVE-2023-38431 | linux | Critical | 9.1 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the rel… | |
| CVE-2023-38430 | linux | Critical | 9.1 | 2023-07-18 | An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading … | |
| CVE-2023-32257 | linux | High | 8.1 | 2023-07-24 | A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within … | |
| CVE-2023-32258 | linux | High | 8.1 | 2023-07-24 | A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within … | |
| CVE-2023-32254 | linux | High | 8.1 | 2023-07-10 | A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within … | |
| CVE-2023-32250 | linux | High | 8.1 | 2023-07-10 | A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within … | |
| CVE-2023-4004 | linux | High | 7.8 | 2023-07-31 | A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove functi… | |
| CVE-2023-3812 | linux | High | 7.8 | 2023-07-24 | An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user g… | |
| CVE-2023-3640 | linux | High | 7.8 | 2023-07-24 | A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to me… | |
| CVE-2023-3609 | linux | High | 7.8 | 2023-07-21 | A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local pri… |