CVE•Published 2023-05-08•1 article on news•6 live references•NVD data
CVE-2023-32233
Vulnerability data via CVEDB (Shodan)
CVSS v3.1
7.8
HIGH
EPSS percentile
96
Exploit Prediction Scoring System · top 4% of all CVEs
Description
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled.
Timeline
Published 2023-05-08
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2023-32233Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product + version
product:"Netapp Hci Baseboard Management Controller" version:"h300s"Version-pinned fingerprint from NVD's first vulnerable CPE.
Shodan · banner/body mention
http.html:"Hci Baseboard Management Controller"HTTP body or banner mentions "Hci Baseboard Management Controller" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2023-32233Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2023-32233Censys host search filtered to this CVE id.
grep.app
CVE-2023-32233Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2023-32233GitHub code search for direct mentions.
Google dork
"CVE-2023-32233" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (7)
CVE-2023-322337 repos
Mr-xn/Penetration_Testing_POCHTML
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypas…
xairy/linux-kernel-exploitationunknown
A collection of links related to Linux kernel security and exploitation
0xsyr0/OSCPPowerShell
OSCP Cheat Sheet
0xMarcio/cvePython
Latest CVEs with their Proof of Concept exploits.
GhostTroops/TOPShell
TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things
Threekiii/CVEunknown
一个 CVE 漏洞预警知识库,无 exp/poc,部分包含修复方案。A knowledge base of CVE security vulnerability, no PoCs/exploits.
xiguayiqiu/GYscanunknown
GYscan是一款基于Go语言开发的现代化综合渗透测试工具,专为安全研究人员、渗透测试工程师和红队成员设计。项目采用模块化架构,包含C2服务器端和客户端组件,支持Windows和Linux平台,提供系统安全分析和漏洞扫描功能。