CVE-2023-4515

ksmbd: validate command request size

Severity Score

7.8

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

MITRE
TN

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate command request size In commit 2b9b8f3b68ed ("ksmbd: validate command payload size"), except
for SMB2_OPLOCK_BREAK_HE command, the request size of other commands
is not checked, it's not expected. Fix it by add check for request
size of other commands.

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate command request size In commit 2b9b8f3b68ed ("ksmbd: validate command payload size"), except for SMB2_OPLOCK_BREAK_HE command, the request size of other commands is not checked, it's not expected. Fix it by add check for request size of other commands.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-08-24 CVE Reserved
2025-08-16 CVE Published
2025-08-16 CVE Updated
2025-08-17 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (8)

URL	Tag	Source
https://git.kernel.org/stable/c/35f450f54dca1519bb24faacd0428db09f89a11f	Vuln. Introduced
https://git.kernel.org/stable/c/9650cf70ec9d94ff34daa088b643229231723c26	Vuln. Introduced
https://git.kernel.org/stable/c/2b9b8f3b68edb3d67d79962f02e26dbb5ae3808d	Vuln. Introduced
https://git.kernel.org/stable/c/768caf4019f0391c0b6452afe34cea1704133f7b	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/595679098bdcdbfbba91ebe07a2f7f208df93870	2023-08-16
https://git.kernel.org/stable/c/c6bef3bc30fd4a175aef846b7d928a6c40d091cd	2023-08-16
https://git.kernel.org/stable/c/ff7236b66d69582f90cf5616e63cfc3dc18142bb	2023-08-16
https://git.kernel.org/stable/c/5aa4fda5aa9c2a5a7bac67b4a12b089ab81fee3c	2023-08-06

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 5.15.121 < 5.15.127 Search vendor "Linux" for product "Linux Kernel" and version " >= 5.15.121 < 5.15.127"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.1.36 < 6.1.46 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.1.36 < 6.1.46"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.4 < 6.4.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.4 < 6.4.11"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.4 < 6.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.4 < 6.5"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.3.10 Search vendor "Linux" for product "Linux Kernel" and version "6.3.10"		en		Affected