CVE-2023-52565

Advisory lineage Upstream: 0 Downstream: 6

Downstream

DEBIAN-CVE-2023-52565 RHSA-2024:3618 RHSA-2024:3627 RHSA-2024:9315 RHSA-2025:10701 UBUNTU-CVE-2023-52565

Analyzed

Published: 02 Mar 2024, 21:59

Last modified:23 May 2026, 15:26

Vulnerability Summary

Overall Risk (default)

medium

28/100

CVSS Score

7.1 HIGH

v3.1 (nvd)

EPSS Score

<0.01% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

02 Mar 2024, 21:59

Published

Vulnerability first disclosed

23 May 2026, 15:26

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix OOB read If the index provided by the user is bigger than the mask size, we might do an out of bound read.

CVSS Metrics

v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS Trends

Current EPSS score: 0.01%• Percentile: 1%

Techniques & Countermeasures

CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.

Affected Systems

linux•linux
≥ 367703c3ec4f72208b8cae14310b8a2c955ec565, < 09635bf4cdd4adf2160198a6041bcc7ca46c0558 | ≥ 40140eda661ea4be219ef194a4f43b7b5e3bbd27, < 8bcf70d787f7d53a3b85ad394f926cfef3eed023 | ≥ 40140eda661ea4be219ef194a4f43b7b5e3bbd27, < 41ebaa5e0eebea4c3bac96b72f9f8ae0d77c0bdb | 42cbbc6b2c39b02e07cbd24dc2155d4edb99dd04 | ≥ 6.1.16, < 6.1.56 | ≥ 6.2.3, < 6.3 | 6.3
linux•linux_kernel
≥ 6.1.16, < 6.1.56 | ≥ 6.3, < 6.5.6 | 6.6:rc1 | 6.6:rc2