CVE-2024-23307 MEDIUM

CVE-2024-23307: Integer overflow in raid5_cache_count in Linux kernel

Vendor Linux
Product Linux kernel
Weakness CWE-190
Published January 25, 2024
Last update May 12, 2026

CVSS base score

4.4/10
Attack vector Network
Attack complexity High
Privileges required High
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.

Key dates

02Disclosure timeline

January 25, 2024 CVE published
May 12, 2026 Record updated