QwikSec

Security Database

CVE

CWE

Training

CVE-2023-0122

Published: Jan 17, 2023

Modified: Apr 4, 2025

PUBLISHED

Description

A NULL pointer dereference vulnerability in the Linux kernel NVMe functionality, in nvmet_setup_auth(), allows an attacker to perform a Pre-Auth Denial of Service (DoS) attack on a remote machine. Affected versions v6.0-rc1 to v6.0-rc3, fixed in v6.0-rc4.

Vendor	Product	Versions
n/a	Kernel	affected `Linux kernel 6.0-rc4`

Weaknesses (CWE)

References

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=da0342a3aa0357795224e6283df86444e1117168

[oss-security] 20230118 Re: CVE-2023-0122: Linux kernel: Pre-Auth Remote DoS in NVMe

mailing-list

https://security.netapp.com/advisory/ntap-20230302-0002/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.