CVE-2023-2593

Medium CVSS 5.9

Overview

A flaw exists within the Linux kernel's handling of new TCP connections. The issue results from the lack of memory release after its effective lifetime. This vulnerability allows an unauthenticated attacker to create a denial of service condition on the system.

CWE: CWE-835 Published: 2025-07-30T16:15:25.980

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.9 (MEDIUM)
Detected tags: dos, unauth_access (tag impact: HIGH)

Recommended actions:

Rate limiting, resource quotas and circuit breakers.
Enforce authentication/authorization; reduce default endpoint exposure.

Overview

Recommended tools

Tags