CVE-2023-3863

MEDIUM Year: 2023
CVSS v3 Score
4.1
Medium
Weakness Type
CWE-416
View all →

Vulnerability Description

A use-after-free flaw was found in nfc_llcp_find_local in net/nfc/llcp_core.c in NFC in the Linux kernel. This flaw allows a local user with special privileges to impact a kernel information leak issue.

Related Vulnerabilities

CVE-2020-25656

MEDIUM
CVSS:4.1(Medium)

A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access o...

CWE-4162020

CVE-2022-1974

MEDIUM
CVSS:4.1(Medium)

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAP_NET_ADMIN ...

CWE-4162022

CVE-2022-28192

MEDIUM
CVSS:4.1(Medium)

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry ...

CWE-4162022

CVE-2024-3861

MEDIUM
CVSS:4.0(Medium)

If an AlignedBuffer were assigned to itself, the subsequent self-move could result in an incorrect reference count and later use-after-free. This vulnerability affects Firefox < 125, Firefox ESR < 115...

CWE-4162024

CVE-2025-0240

MEDIUM
CVSS:4.0(Medium)

Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability affects Firefox < 134, Firefox ESR < 128.6...

CWE-4162025

CVE-2024-23158

MEDIUM
CVSS:4.2(Medium)

A maliciously crafted IGES file, when parsed in ASMImport229A.dll through Autodesk applications, can be used to cause a use-after-free vulnerability. A malicious actor can leverage this vulnerability ...

CWE-4162024