CVE-2023-53675

Advisory lineage Upstream: 0 Downstream: 19

Downstream

DEBIAN-CVE-2023-53675 RHSA-2023:6583 RHSA-2023:7077 RHSA-2026:0532 RHSA-2026:0533 RHSA-2026:0534

Analyzed

Published: 07 Oct 2025, 15:21

Last modified:11 May 2026, 19:49

Vulnerability Summary

Overall Risk (default)

medium

28/100

CVSS Score

7.1 HIGH

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability -0.02%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

07 Oct 2025, 15:21

Published

Vulnerability first disclosed

11 May 2026, 19:49

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix possible desc_ptr out-of-bounds accesses Sanitize possible desc_ptr out-of-bounds accesses in ses_enclosure_data_process().

CVSS Metrics

v3.1•HIGH•Score: 7.1CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 4%

Techniques & Countermeasures

CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.

Affected Systems

linux•linux
≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 72021ae61a2bc6ca73cd593e255a10ed5f5dc5e7 | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < cffe09ca0555e235a42d6fa065e463c4b3d5b657 | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 79ec5dd5fb07ecaea2f978c2d7a9f2f3526e4d19 | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < c315560e3ef77c1d822249f1743e647dc9c9912a | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 584892fd29a41ef424a148118a3103b16b94fb8c | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 414418abc19fa4ccf730d273061a426c07a061d6 | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 4b8cae410472653a59e15af62c57c49b8e0a1201 | ≥ 9927c68864e9c39cc317b4f559309ba29e642168, < 801ab13d50cf3d26170ee073ea8bb4eececb76ab | 2.6.25
linux•linux_kernel
≥ 2.6.25, < 4.14.308 | ≥ 4.15, < 4.19.276 | ≥ 4.20, < 5.4.235 | ≥ 5.5, < 5.10.173 | ≥ 5.11, < 5.15.99 | ≥ 5.16, < 6.1.16 | ≥ 6.2, < 6.2.3