How severe is CVE-2023-3640?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2023-3640?

This is classified as CWE-203, which is a common weakness in software security.

CVE-2023-3640 - HIGH Severity | CVSS 7.8

Vulnerability Description

A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Randomize per-cpu entry area' feature was implemented in /arch/x86/mm/cpu_entry_area.c, which works through the init_cea_offsets() function when KASLR is enabled. However, despite this feature, there is still a risk of per-cpu entry area leaks. This issue could allow a local user to gain access to some important data with memory in an expected location and potentially escalate their privileges on the system.

Related Vulnerabilities

CVE-2022-37459

HIGH

CVSS:7.8(High)

Ampere Altra devices before 1.08g and Ampere Altra Max devices before 2.05a allow attackers to control the predictions for return addresses and potentially hijack code flow to execute arbitrary code v...

CWE-2032022

CVE-2023-21298

HIGH

CVSS:7.8(High)

In Slice, there is a possible disclosure of installed applications due to side channel information disclosure. This could lead to local escalation of privilege with no additional execution privileges ...

CWE-2032023

CVE-2023-21324

HIGH

CVSS:7.8(High)

In Package Installer, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local escalation of pr...

CWE-2032023

CVE-2023-21337

HIGH

CVSS:7.8(High)

In InputMethod, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local escalation of privileg...

CWE-2032023

CVE-2024-43095

HIGH

CVSS:7.8(High)

In multiple locations, there is a possible way to obtain any system permission due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privilege...

CWE-2032024

CVE-2020-15151

HIGH

CVSS:8.0(High)

OpenMage LTS before versions 19.4.6 and 20.0.2 allows attackers to circumvent the `fromkey protection` in the Admin Interface and increases the attack surface for Cross Site Request Forgery attacks. T...

CWE-2032020