HIGH🇵🇱 Wersja polska

CVE-2023-5633

CVSS 7.8v3.1pub. 2023-10-23upd. 2026-02-25

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. When running inside a VMware guest with 3D acceleration enabled, a local, unprivileged user could potentially use this flaw to escalate their privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Linux Kernel

    OS
    Linux
    6.66.1.13 – 6.1.75 (bez)6.2 – 6.5.8 (bez)
  • Red Hat Codeready Linux Builder

    APP
    Redhat
    8.09.0
  • Red Hat Codeready Linux Builder Eus

    APP
    Redhat
    8.89.29.4
  • Red Hat Codeready Linux Builder For Arm64

    APP
    Redhat
    8.0_aarch649.0_aarch64
  • Red Hat Codeready Linux Builder For Arm64 Eus

    APP
    Redhat
    8.8_aarch649.2_aarch649.4_aarch64
  • Red Hat Codeready Linux Builder For IBM Z Systems

    APP
    Redhat
    9.0_s390x
  • Red Hat Codeready Linux Builder For IBM Z Systems Eus

    APP
    Redhat
    9.2_s390x9.4_s390x
  • Red Hat Codeready Linux Builder For Power Little Endian

    APP
    Redhat
    8.0_ppc64le9.0_ppc64le
  • Red Hat Codeready Linux Builder For Power Little Endian Eus

    APP
    Redhat
    8.8_ppc64le9.2_ppc64le9.4_ppc64le
  • Red Hat Enterprise Linux

    OS
    Redhat
    8.09.0
  • Red Hat Enterprise Linux Eus

    OS
    Redhat
    8.89.29.4
  • Red Hat Enterprise Linux For Arm 64

    OS
    Redhat
    8.0_aarch649.0_aarch64
  • Red Hat Enterprise Linux For Arm 64 Eus

    OS
    Redhat
    8.8_aarch649.2_aarch649.4_aarch64
  • Red Hat Enterprise Linux For IBM Z Systems

    OS
    Redhat
    8.0_s390x9.0_s390x
  • Red Hat Enterprise Linux For IBM Z Systems Eus

    OS
    Redhat
    8.8_s390x9.2_s390x9.4_s390x
  • Red Hat Enterprise Linux For Power Little Endian

    OS
    Redhat
    8.0_ppc64le9.0_ppc64le
  • Red Hat Enterprise Linux For Power Little Endian Eus

    OS
    Redhat
    9.2_ppc64le9.4_ppc64le
  • Red Hat Enterprise Linux For Real Time

    OS
    Redhat
    8.09.0
  • Red Hat Enterprise Linux For Real Time For Nfv

    OS
    Redhat
    8.09.0
  • Red Hat Enterprise Linux Server Aus

    OS
    Redhat
    9.29.4
  • Red Hat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions

    OS
    Redhat
    8.89.2_ppc64le
  • Red Hat Enterprise Linux Server Tus

    OS
    Redhat
    8.8
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2025-10585CRITICAL9.8⚠ KEVPL ✓ten sam produkt

Type confusion w V8 (Google Chrome) — zdalne uszkodzenie sterty

CVE-2025-32463CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)

CVE-2025-34028CRITICAL9.3⚠ KEVPL ✓ten sam produkt

Commvault Command Center – nieuwierzytelniony RCE przez path traversal w ZIP

CVE-2022-47986CRITICAL9.8⚠ KEVten sam produkt

IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on t...

CVE-2022-22954CRITICAL9.8⚠ KEVten sam produkt

VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-s...