CVE-2023-3865

Unknown CVSS N/A

Overview

In the Linux kernel, the following vulnerability has been resolved:

ksmbd: fix out-of-bound read in smb2_write

ksmbd_smb2_check_message doesn't validate hdr->NextCommand. If
->NextCommand is bigger than Offset + Length of smb2 write, It will
allow oversized smb2 write length. It will cause OOB read in smb2_write.

CWE: N/A Published: 2025-08-16T14:15:27.250

Risk analysis

This vulnerability is rated ⚪ UNKNOWN.

CVSS: N/A
Detected tags: oob (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags