Linux Kernel CVE Statistics
16 Linux Kernel CVEs in November 2023
Full month · Source: NIST NVD
In November 2023, 16 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 5 were rated High severity and 11 Medium. No CVEs from this month have been confirmed as actively exploited via the CISA KEV catalog. November's 16 CVEs represent 5% of all 2023 Linux kernel CVEs , down from October's 18 (a 11% month-over-month decrease) .
16
Total CVEs
0
Critical
5
High
11
Medium
0
Low
0
KEV Exploited
All CVEs — November 2023
16 CVEs
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2023-5178 | linux | High | 8.8 | 2023-11-01 | A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug … | |
| CVE-2023-1194 | linux | High | 8.1 | 2023-11-03 | An out-of-bounds (OOB) memory read flaw was found in parse_lease_state in the KSMBD implementation of the in-kernel sam… | |
| CVE-2023-5972 | linux | High | 7.8 | 2023-11-23 | A null pointer dereference flaw was found in the nft_inner.c functionality of netfilter in the Linux kernel. This issue… | |
| CVE-2023-6111 | linux | High | 7.8 | 2023-11-14 | A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local p… | |
| CVE-2023-1476 | linux | High | 7.0 | 2023-11-03 | A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue… | |
| CVE-2023-6238 | linux | Medium | 6.7 | 2023-11-21 | A buffer overflow vulnerability was found in the NVM Express (NVMe) driver in the Linux kernel. Only privileged user co… | |
| CVE-2023-1192 | linux | Medium | 6.5 | 2023-11-01 | A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers respon… | |
| CVE-2023-1193 | linux | Medium | 6.5 | 2023-11-01 | A use-after-free flaw was found in setup_async_work in the KSMBD implementation of the in-kernel samba server and CIFS … | |
| CVE-2023-39198 | linux | Medium | 6.4 | 2023-11-09 | A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the … | |
| CVE-2023-3397 | linux | Medium | 6.3 | 2023-11-01 | A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different… | |
| CVE-2023-6039 | linux | Medium | 5.5 | 2023-11-09 | A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/us… | |
| CVE-2023-31018 | linux | Medium | 5.5 | 2023-11-02 | NVIDIA GPU Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regula… | |
| CVE-2023-31022 | linux | Medium | 5.5 | 2023-11-02 | NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a NULL-pointer… | |
| CVE-2023-6176 | linux | Medium | 4.7 | 2023-11-16 | A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functiona… | |
| CVE-2023-6121 | linux | Medium | 4.3 | 2023-11-16 | An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a … |