CVE-2023-1281 HIGH

CVE-2023-1281: UAF in Linux kernel's tcindex (traffic control index filter) implementation

Vendor Linux
Product Linux Kernel
Weakness CWE-416
Published March 22, 2023
Last update March 5, 2025

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Use After Free vulnerability in Linux kernel traffic control index filter (tcindex) allows Privilege Escalation. The imperfect hash area can be updated while packets are traversing, which will cause a use-after-free when 'tcf_exts_exec()' is called with the destroyed tcf_ext. A local attacker user can use this vulnerability to elevate its privileges to root. This issue affects Linux Kernel: from 4.14 before git commit ee059170b1f7e94e55fa6cadee544e176a6e59c2.

Key dates

02Disclosure timeline

March 22, 2023 CVE published
March 5, 2025 Record updated