CVE-2023-46813

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-46813
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-46813.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-46813
Downstream
Related
Published
2023-10-27T03:15:08Z
Modified
2025-08-09T19:01:27Z
Severity
  • 7.0 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the #VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kernel memory (and thus privilege escalation). This depends on a race condition through which userspace can replace an instruction before the #VC handler reads it.

References

Affected packages