CVE-2023-52919

Advisory lineage Upstream: 0 Downstream: 20
Analyzed
Published: 22 Oct 2024, 07:37
Last modified:11 May 2026, 19:35

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
v3.1 (nvd)
EPSS Score
0.01% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

22 Oct 2024, 07:37
Published
Vulnerability first disclosed
11 May 2026, 19:35
Last Modified
Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix possible NULL pointer dereference in send_acknowledge() Handle memory allocation failure from nci_skb_alloc() (calling alloc_skb()) to avoid possible NULL pointer dereference.

CVSS Metrics

  • v3.1MEDIUMScore: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.01% Percentile: 2%

Techniques & Countermeasures

  • CWE-476NULL Pointer Dereference

    The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

  • linuxlinux

    ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < 2b2edf089df3a69f0072c6e71563394c5a94e62e | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < 5622592f8f74ae3e594379af02e64ea84772d0dd | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < 76050b0cc5a72e0c7493287b7e18e1cb9e3c4612 | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < c95fa5b20fe03609e0894656fa43c18045b5097e | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < ffdc881f68073ff86bf21afb9bb954812e8278be | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < d7dbdbe3800a908eecd4975c31be47dd45e2104a | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < bb6cacc439ddd2cd51227ab193f4f91cfc7f014f | ≥ 391d8a2da787257aeaf952c974405b53926e3fb3, < 7937609cd387246aed994e81aa4fa951358fba41 | 3.11

  • linuxlinux_kernel

    ≥ 3.11, < 4.14.328 | ≥ 4.15, < 4.19.297 | ≥ 4.20, < 5.4.259 | ≥ 5.5, < 5.10.199 | ≥ 5.11, < 5.15.137 | ≥ 5.16, < 6.1.60 | ≥ 6.2, < 6.5.9 | 6.6:rc1 | 6.6:rc2 | 6.6:rc3 | 6.6:rc4 | 6.6:rc5 | 6.6:rc6

References (8)