CVE-2023-53692 (GCVE-0-2023-53692)

Vulnerability from cvelistv5 – Published: 2025-10-22 13:23 – Updated: 2025-12-23 16:39
VLAI?
Title
ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline
Summary
In the Linux kernel, the following vulnerability has been resolved: ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline Syzbot found the following issue: loop0: detected capacity change from 0 to 2048 EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none. ================================================================== BUG: KASAN: use-after-free in ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline] BUG: KASAN: use-after-free in ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931 Read of size 4 at addr ffff888073644750 by task syz-executor420/5067 CPU: 0 PID: 5067 Comm: syz-executor420 Not tainted 6.2.0-rc1-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: <TASK> __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1b1/0x290 lib/dump_stack.c:106 print_address_description+0x74/0x340 mm/kasan/report.c:306 print_report+0x107/0x1f0 mm/kasan/report.c:417 kasan_report+0xcd/0x100 mm/kasan/report.c:517 ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline] ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931 ext4_clu_mapped+0x117/0x970 fs/ext4/extents.c:5809 ext4_insert_delayed_block fs/ext4/inode.c:1696 [inline] ext4_da_map_blocks fs/ext4/inode.c:1806 [inline] ext4_da_get_block_prep+0x9e8/0x13c0 fs/ext4/inode.c:1870 ext4_block_write_begin+0x6a8/0x2290 fs/ext4/inode.c:1098 ext4_da_write_begin+0x539/0x760 fs/ext4/inode.c:3082 generic_perform_write+0x2e4/0x5e0 mm/filemap.c:3772 ext4_buffered_write_iter+0x122/0x3a0 fs/ext4/file.c:285 ext4_file_write_iter+0x1d0/0x18f0 call_write_iter include/linux/fs.h:2186 [inline] new_sync_write fs/read_write.c:491 [inline] vfs_write+0x7dc/0xc50 fs/read_write.c:584 ksys_write+0x177/0x2a0 fs/read_write.c:637 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x63/0xcd RIP: 0033:0x7f4b7a9737b9 RSP: 002b:00007ffc5cac3668 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4b7a9737b9 RDX: 00000000175d9003 RSI: 0000000020000200 RDI: 0000000000000004 RBP: 00007f4b7a933050 R08: 0000000000000000 R09: 0000000000000000 R10: 000000000000079f R11: 0000000000000246 R12: 00007f4b7a9330e0 R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 </TASK> Above issue is happens when enable bigalloc and inline data feature. As commit 131294c35ed6 fixed delayed allocation bug in ext4_clu_mapped for bigalloc + inline. But it only resolved issue when has inline data, if inline data has been converted to extent(ext4_da_convert_inline_data_to_extent) before writepages, there is no EXT4_STATE_MAY_INLINE_DATA flag. However i_data is still store inline data in this scene. Then will trigger UAF when find extent. To resolve above issue, there is need to add judge "ext4_has_inline_data(inode)" in ext4_clu_mapped().
Severity ?
No CVSS data available.
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: 1ed1eef0551bebee8e56973ccd0900e3578edfb7 , < 0ce15000dee0ecd6f235f925a327803e2ef489c6 (git)
Affected: 6f4200ec76a0d31200c308ec5a71c68df5417004 , < a34f6dcb78c654ab905642c1b4e7e5fbb4f0babe (git)
Affected: 9404839e0c9db5a517ea83c0ca3388b39d105fdf , < 770b0613637f59f3091dda1ff0c23671a5326b9c (git)
Affected: d440d6427a5e3a877c1c259b8d2b216ddb65e185 , < 40566def189c513be2c694681256d7486cc6e368 (git)
Affected: 81b915181c630ee1cffa052e52874fe4e1ba91ac , < 96d440bee177669dc0acedca0abd73bae6a9be8b (git)
Affected: 131294c35ed6f777bd4e79d42af13b5c41bf2775 , < 11c87c8df2cae1d6be83c07e59fef0792de73482 (git)
Affected: 131294c35ed6f777bd4e79d42af13b5c41bf2775 , < 14da044725a3ab10affa3566d29c15737c0e67a4 (git)
Affected: 131294c35ed6f777bd4e79d42af13b5c41bf2775 , < 835659598c67907b98cd2aa57bb951dfaf675c69 (git)
Affected: c0c8edbc8abbe8f16d80a1d794d1ba2c12b6f193 (git)
Create a notification for this product.
    Linux Linux Affected: 6.2
Unaffected: 0 , < 6.2 (semver)
Unaffected: 4.19.271 , ≤ 4.19.* (semver)
Unaffected: 5.4.243 , ≤ 5.4.* (semver)
Unaffected: 5.10.180 , ≤ 5.10.* (semver)
Unaffected: 5.15.111 , ≤ 5.15.* (semver)
Unaffected: 6.1.28 , ≤ 6.1.* (semver)
Unaffected: 6.2.15 , ≤ 6.2.* (semver)
Unaffected: 6.3.2 , ≤ 6.3.* (semver)
Unaffected: 6.4 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/extents.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "0ce15000dee0ecd6f235f925a327803e2ef489c6",
              "status": "affected",
              "version": "1ed1eef0551bebee8e56973ccd0900e3578edfb7",
              "versionType": "git"
            },
            {
              "lessThan": "a34f6dcb78c654ab905642c1b4e7e5fbb4f0babe",
              "status": "affected",
              "version": "6f4200ec76a0d31200c308ec5a71c68df5417004",
              "versionType": "git"
            },
            {
              "lessThan": "770b0613637f59f3091dda1ff0c23671a5326b9c",
              "status": "affected",
              "version": "9404839e0c9db5a517ea83c0ca3388b39d105fdf",
              "versionType": "git"
            },
            {
              "lessThan": "40566def189c513be2c694681256d7486cc6e368",
              "status": "affected",
              "version": "d440d6427a5e3a877c1c259b8d2b216ddb65e185",
              "versionType": "git"
            },
            {
              "lessThan": "96d440bee177669dc0acedca0abd73bae6a9be8b",
              "status": "affected",
              "version": "81b915181c630ee1cffa052e52874fe4e1ba91ac",
              "versionType": "git"
            },
            {
              "lessThan": "11c87c8df2cae1d6be83c07e59fef0792de73482",
              "status": "affected",
              "version": "131294c35ed6f777bd4e79d42af13b5c41bf2775",
              "versionType": "git"
            },
            {
              "lessThan": "14da044725a3ab10affa3566d29c15737c0e67a4",
              "status": "affected",
              "version": "131294c35ed6f777bd4e79d42af13b5c41bf2775",
              "versionType": "git"
            },
            {
              "lessThan": "835659598c67907b98cd2aa57bb951dfaf675c69",
              "status": "affected",
              "version": "131294c35ed6f777bd4e79d42af13b5c41bf2775",
              "versionType": "git"
            },
            {
              "status": "affected",
              "version": "c0c8edbc8abbe8f16d80a1d794d1ba2c12b6f193",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "fs/ext4/extents.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "6.2"
            },
            {
              "lessThan": "6.2",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.271",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.243",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.180",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.111",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.28",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.2.*",
              "status": "unaffected",
              "version": "6.2.15",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.3.*",
              "status": "unaffected",
              "version": "6.3.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.4",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.271",
                  "versionStartIncluding": "4.19.270",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.243",
                  "versionStartIncluding": "5.4.229",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.180",
                  "versionStartIncluding": "5.10.163",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.111",
                  "versionStartIncluding": "5.15.87",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.28",
                  "versionStartIncluding": "6.1.4",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.2.15",
                  "versionStartIncluding": "6.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.3.2",
                  "versionStartIncluding": "6.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.4",
                  "versionStartIncluding": "6.2",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionStartIncluding": "6.0.18",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\next4: fix use-after-free read in ext4_find_extent for bigalloc + inline\n\nSyzbot found the following issue:\nloop0: detected capacity change from 0 to 2048\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.\n==================================================================\nBUG: KASAN: use-after-free in ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline]\nBUG: KASAN: use-after-free in ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931\nRead of size 4 at addr ffff888073644750 by task syz-executor420/5067\n\nCPU: 0 PID: 5067 Comm: syz-executor420 Not tainted 6.2.0-rc1-syzkaller #0\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\nCall Trace:\n \u003cTASK\u003e\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0x1b1/0x290 lib/dump_stack.c:106\n print_address_description+0x74/0x340 mm/kasan/report.c:306\n print_report+0x107/0x1f0 mm/kasan/report.c:417\n kasan_report+0xcd/0x100 mm/kasan/report.c:517\n ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline]\n ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931\n ext4_clu_mapped+0x117/0x970 fs/ext4/extents.c:5809\n ext4_insert_delayed_block fs/ext4/inode.c:1696 [inline]\n ext4_da_map_blocks fs/ext4/inode.c:1806 [inline]\n ext4_da_get_block_prep+0x9e8/0x13c0 fs/ext4/inode.c:1870\n ext4_block_write_begin+0x6a8/0x2290 fs/ext4/inode.c:1098\n ext4_da_write_begin+0x539/0x760 fs/ext4/inode.c:3082\n generic_perform_write+0x2e4/0x5e0 mm/filemap.c:3772\n ext4_buffered_write_iter+0x122/0x3a0 fs/ext4/file.c:285\n ext4_file_write_iter+0x1d0/0x18f0\n call_write_iter include/linux/fs.h:2186 [inline]\n new_sync_write fs/read_write.c:491 [inline]\n vfs_write+0x7dc/0xc50 fs/read_write.c:584\n ksys_write+0x177/0x2a0 fs/read_write.c:637\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\nRIP: 0033:0x7f4b7a9737b9\nRSP: 002b:00007ffc5cac3668 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4b7a9737b9\nRDX: 00000000175d9003 RSI: 0000000020000200 RDI: 0000000000000004\nRBP: 00007f4b7a933050 R08: 0000000000000000 R09: 0000000000000000\nR10: 000000000000079f R11: 0000000000000246 R12: 00007f4b7a9330e0\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\n \u003c/TASK\u003e\n\nAbove issue is happens when enable bigalloc and inline data feature. As\ncommit 131294c35ed6 fixed delayed allocation bug in ext4_clu_mapped for\nbigalloc + inline. But it only resolved issue when has inline data, if\ninline data has been converted to extent(ext4_da_convert_inline_data_to_extent)\nbefore writepages, there is no EXT4_STATE_MAY_INLINE_DATA flag. However\ni_data is still store inline data in this scene. Then will trigger UAF\nwhen find extent.\nTo resolve above issue, there is need to add judge \"ext4_has_inline_data(inode)\"\nin ext4_clu_mapped()."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-23T16:39:54.023Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/0ce15000dee0ecd6f235f925a327803e2ef489c6"
        },
        {
          "url": "https://git.kernel.org/stable/c/a34f6dcb78c654ab905642c1b4e7e5fbb4f0babe"
        },
        {
          "url": "https://git.kernel.org/stable/c/770b0613637f59f3091dda1ff0c23671a5326b9c"
        },
        {
          "url": "https://git.kernel.org/stable/c/40566def189c513be2c694681256d7486cc6e368"
        },
        {
          "url": "https://git.kernel.org/stable/c/96d440bee177669dc0acedca0abd73bae6a9be8b"
        },
        {
          "url": "https://git.kernel.org/stable/c/11c87c8df2cae1d6be83c07e59fef0792de73482"
        },
        {
          "url": "https://git.kernel.org/stable/c/14da044725a3ab10affa3566d29c15737c0e67a4"
        },
        {
          "url": "https://git.kernel.org/stable/c/835659598c67907b98cd2aa57bb951dfaf675c69"
        }
      ],
      "title": "ext4: fix use-after-free read in ext4_find_extent for bigalloc + inline",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-53692",
    "datePublished": "2025-10-22T13:23:34.702Z",
    "dateReserved": "2025-10-22T13:21:37.344Z",
    "dateUpdated": "2025-12-23T16:39:54.023Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-53692\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-10-22T14:15:43.670\",\"lastModified\":\"2025-12-23T17:15:45.883\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\next4: fix use-after-free read in ext4_find_extent for bigalloc + inline\\n\\nSyzbot found the following issue:\\nloop0: detected capacity change from 0 to 2048\\nEXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.\\n==================================================================\\nBUG: KASAN: use-after-free in ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline]\\nBUG: KASAN: use-after-free in ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931\\nRead of size 4 at addr ffff888073644750 by task syz-executor420/5067\\n\\nCPU: 0 PID: 5067 Comm: syz-executor420 Not tainted 6.2.0-rc1-syzkaller #0\\nHardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022\\nCall Trace:\\n \u003cTASK\u003e\\n __dump_stack lib/dump_stack.c:88 [inline]\\n dump_stack_lvl+0x1b1/0x290 lib/dump_stack.c:106\\n print_address_description+0x74/0x340 mm/kasan/report.c:306\\n print_report+0x107/0x1f0 mm/kasan/report.c:417\\n kasan_report+0xcd/0x100 mm/kasan/report.c:517\\n ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline]\\n ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931\\n ext4_clu_mapped+0x117/0x970 fs/ext4/extents.c:5809\\n ext4_insert_delayed_block fs/ext4/inode.c:1696 [inline]\\n ext4_da_map_blocks fs/ext4/inode.c:1806 [inline]\\n ext4_da_get_block_prep+0x9e8/0x13c0 fs/ext4/inode.c:1870\\n ext4_block_write_begin+0x6a8/0x2290 fs/ext4/inode.c:1098\\n ext4_da_write_begin+0x539/0x760 fs/ext4/inode.c:3082\\n generic_perform_write+0x2e4/0x5e0 mm/filemap.c:3772\\n ext4_buffered_write_iter+0x122/0x3a0 fs/ext4/file.c:285\\n ext4_file_write_iter+0x1d0/0x18f0\\n call_write_iter include/linux/fs.h:2186 [inline]\\n new_sync_write fs/read_write.c:491 [inline]\\n vfs_write+0x7dc/0xc50 fs/read_write.c:584\\n ksys_write+0x177/0x2a0 fs/read_write.c:637\\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\\n do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80\\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\\nRIP: 0033:0x7f4b7a9737b9\\nRSP: 002b:00007ffc5cac3668 EFLAGS: 00000246 ORIG_RAX: 0000000000000001\\nRAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4b7a9737b9\\nRDX: 00000000175d9003 RSI: 0000000020000200 RDI: 0000000000000004\\nRBP: 00007f4b7a933050 R08: 0000000000000000 R09: 0000000000000000\\nR10: 000000000000079f R11: 0000000000000246 R12: 00007f4b7a9330e0\\nR13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000\\n \u003c/TASK\u003e\\n\\nAbove issue is happens when enable bigalloc and inline data feature. As\\ncommit 131294c35ed6 fixed delayed allocation bug in ext4_clu_mapped for\\nbigalloc + inline. But it only resolved issue when has inline data, if\\ninline data has been converted to extent(ext4_da_convert_inline_data_to_extent)\\nbefore writepages, there is no EXT4_STATE_MAY_INLINE_DATA flag. However\\ni_data is still store inline data in this scene. Then will trigger UAF\\nwhen find extent.\\nTo resolve above issue, there is need to add judge \\\"ext4_has_inline_data(inode)\\\"\\nin ext4_clu_mapped().\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/0ce15000dee0ecd6f235f925a327803e2ef489c6\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/11c87c8df2cae1d6be83c07e59fef0792de73482\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/14da044725a3ab10affa3566d29c15737c0e67a4\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/40566def189c513be2c694681256d7486cc6e368\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/770b0613637f59f3091dda1ff0c23671a5326b9c\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/835659598c67907b98cd2aa57bb951dfaf675c69\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/96d440bee177669dc0acedca0abd73bae6a9be8b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/a34f6dcb78c654ab905642c1b4e7e5fbb4f0babe\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.