vulnerability

Red Hat: CVE-2023-5197: kernel: netfilter: nf_tables: use-after-free due to addition and removal of rules from chain bindings within the same transaction

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:L/AC:L/Au:S/C:P/I:P/A:C)	Sep 27, 2023	Jul 9, 2025	Jul 10, 2025

Severity

CVSS

(AV:L/AC:L/Au:S/C:P/I:P/A:C)

Published

Sep 27, 2023

Added

Jul 9, 2025

Modified

Jul 10, 2025

Description

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

Addition and removal of rules from chain bindings within the same transaction causes leads to use-after-free.

We recommend upgrading past commit f15f29fd4779be8a418b66e9d52979bb6d6c2325.

Solution

no-fix-redhat-rpm-package

References

NVD-CVE-2023-5197

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today