CVE-2023-52927

7.8 HIGH

Published: March 14, 2025 Modified: December 31, 2025

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be removed in nf_ct_find_expectation Currently nf_conntrack_in() calling nf_ct_find_expectation() will remove the exp from the hash table. However, in some scenario, we expect the exp not to be removed when the created ct will not be confirmed, like in OVS and TC conntrack in the following patches. This patch allows exp not to be removed by setting IPS_CONFIRMED in the status of the tmpl.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

https://git.kernel.org/stable/c/3fa58a6fbd1e9e5682d09cdafb08fba004cb12ec

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Broken Link

https://git.kernel.org/stable/c/4914109a8e1e494c6aa9852f9e84ec77a5fc643f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Broken Link

https://seadragnol.github.io/posts/CVE-2023-52927/

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Exploit Technical Description

https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Source: af854a3a-2127-422b-91ae-364da2661108

Issue Tracking Third Party Advisory

4 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.8 / 10.0

EPSS (Exploit Probability)

0.0%

12th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-416

Affected Vendors

debian linux

Related CVEs

CVE-2025-69261 N/A

CVE-2025-69257 6.7

CVE-2025-69210 N/A

CVE-2025-66823 N/A

CVE-2025-50343 N/A