CVE-2023-45862

An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation.
Configurations

Configuration 1 (hide)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

History

21 Nov 2024, 08:27

Type Values Removed Values Added
References () https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.5 - Release Notes () https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.5 - Release Notes
References () https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce33e64c1788912976b61314b56935abd4bc97ef - Mailing List, Patch () https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce33e64c1788912976b61314b56935abd4bc97ef - Mailing List, Patch
References () https://security.netapp.com/advisory/ntap-20231116-0004/ - Third Party Advisory () https://security.netapp.com/advisory/ntap-20231116-0004/ - Third Party Advisory

08 Jan 2024, 17:41

Type Values Removed Values Added
First Time Netapp
Netapp active Iq Unified Manager
Netapp h410c
Netapp h410c Firmware
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : 5.5
References () https://security.netapp.com/advisory/ntap-20231116-0004/ - () https://security.netapp.com/advisory/ntap-20231116-0004/ - Third Party Advisory
CPE cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*
cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*

16 Nov 2023, 15:15

Type Values Removed Values Added
References
  • () https://security.netapp.com/advisory/ntap-20231116-0004/ -

19 Oct 2023, 11:07

Type Values Removed Values Added
CWE CWE-770
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
References (MISC) https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.5 - (MISC) https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.5 - Release Notes
References (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce33e64c1788912976b61314b56935abd4bc97ef - (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=ce33e64c1788912976b61314b56935abd4bc97ef - Mailing List, Patch
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
First Time Linux
Linux linux Kernel

14 Oct 2023, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-10-14 21:15

Updated : 2024-11-21 08:27


NVD link : CVE-2023-45862

Mitre link : CVE-2023-45862

CVE.ORG link : CVE-2023-45862


JSON object : View

Products Affected

netapp

  • active_iq_unified_manager
  • h410c_firmware
  • h410c

linux

  • linux_kernel
CWE
CWE-770

Allocation of Resources Without Limits or Throttling