CVE-2023-52620 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nf_tables: disallow timeout for anonymous sets

Never used from userspace, disallow these parameters.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00017.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< 116b0e8e4673a5faa8a739a19b467010c4d3058c
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< 49ce99ae43314d887153e07cec8bb6a647a19268
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< 6f3ae02bbb62f151b19162d5fdc9fe3d48450323
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< 00b19ee0dcc1aef06294471ab489bae26d94524e
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< b7be6c737a179a76901c872f6b4c1d00552d9a1b
`761da2935d6e18d178582dbdf315a3a458555505`	affected	< e26d3009efda338f19016df4175f354a9bd0a4ab

Linux

affected

Version	Status	Constraints
`4.1`	affected	—
`0`	unaffected	< 4.1
`4.19.312`	unaffected	≤ 4.19.*
`5.4.274`	unaffected	≤ 5.4.*
`5.10.215`	unaffected	≤ 5.10.*
`5.15.151`	unaffected	≤ 5.15.*
`6.1.81`	unaffected	≤ 6.1.*
`6.4`	unaffected	≤ *

Configuration 1 [-]

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc2::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc3::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc4::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc5::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc6::::::
	cpe:2.3:o:linux:linux_kernel:6.4:rc7::::::

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 8
kernel-rt-0:4.18.0-553.rt7.342.el8_10	cpe:/a:redhat:enterprise_linux:8::nfv	RHSA-2024:2950	2024-05-22T00:00:00Z
kernel-0:4.18.0-553.el8_10	cpe:/o:redhat:enterprise_linux:8	RHSA-2024:3138	2024-05-22T00:00:00Z
Red Hat Enterprise Linux 9
kernel-0:5.14.0-427.13.1.el9_4	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:2394	2024-04-30T00:00:00Z
kernel-0:5.14.0-427.13.1.el9_4	cpe:/o:redhat:enterprise_linux:9	RHSA-2024:2394	2024-04-30T00:00:00Z

No data.

Project Subscriptions

Vendors	Products
Linux Subscribe	Linux Kernel Subscribe
Redhat Subscribe	Enterprise Linux Subscribe

Advisories

Source	ID	Title
Debian DLA	DLA-3840-1	linux security update
Debian DLA	DLA-3842-1	linux-5.10 security update
Debian DSA	DSA-5658-1	linux security update
Debian DSA	DSA-5681-1	linux security update
Ubuntu USN	USN-6820-1	Linux kernel vulnerabilities
Ubuntu USN	USN-6820-2	Linux kernel (NVIDIA) vulnerabilities
Ubuntu USN	USN-6821-1	Linux kernel vulnerabilities
Ubuntu USN	USN-6821-2	Linux kernel vulnerabilities
Ubuntu USN	USN-6821-3	Linux kernel (AWS) vulnerabilities
Ubuntu USN	USN-6821-4	Linux kernel (Azure) vulnerabilities
Ubuntu USN	USN-6828-1	Linux kernel (Intel IoTG) vulnerabilities
Ubuntu USN	USN-6871-1	Linux kernel (HWE) vulnerabilities
Ubuntu USN	USN-6892-1	Linux kernel (IBM) vulnerabilities
Ubuntu USN	USN-6896-1	Linux kernel vulnerabilities
Ubuntu USN	USN-6896-2	Linux kernel vulnerabilities
Ubuntu USN	USN-6896-3	Linux kernel vulnerabilities
Ubuntu USN	USN-6896-4	Linux kernel vulnerabilities
Ubuntu USN	USN-6896-5	Linux kernel vulnerabilities
Ubuntu USN	USN-6919-1	Linux kernel vulnerabilities
Ubuntu USN	USN-6926-1	Linux kernel vulnerabilities
Ubuntu USN	USN-6926-2	Linux kernel vulnerabilities
Ubuntu USN	USN-6926-3	Linux kernel (Azure) vulnerabilities
Ubuntu USN	USN-6938-1	Linux kernel vulnerabilities

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/00b19ee0dcc1aef06294471ab489bae26d94524e
https://git.kernel.org/stable/c/116b0e8e4673a5faa8a739a19b467010c4d3058c
https://git.kernel.org/stable/c/49ce99ae43314d887153e07cec8bb6a647a19268
https://git.kernel.org/stable/c/6f3ae02bbb62f151b19162d5fdc9fe3d48450323
https://git.kernel.org/stable/c/b7be6c737a179a76901c872f6b4c1d00552d9a1b
https://git.kernel.org/stable/c/e26d3009efda338f19016df4175f354a9bd0a4ab
https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
https://lore.kernel.org/linux-cve-announce/2024032147-CVE-2023-52620-11a9@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-52620
https://www.cve.org/CVERecord?id=CVE-2023-52620

History

Tue, 16 Sep 2025 16:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Weaknesses		NVD-CWE-noinfo
CPEs		cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:linux:linux_kernel:6.4:rc1:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc2:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc3:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc4:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc5:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc6:::::: cpe:2.3:o:linux:linux_kernel:6.4:rc7::::::
Vendors & Products		Linux Linux linux Kernel

Fri, 22 Nov 2024 12:00:00 +0000

Type	Values Removed	Values Added
References		https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Mon, 04 Nov 2024 13:45:00 +0000

Type	Values Removed	Values Added
References	https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Mon, 04 Nov 2024 13:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2024-03-21T10:43:42.854Z

Updated: 2026-01-05T10:16:43.186Z

Reserved: 2024-03-06T09:52:12.090Z

Link: CVE-2023-52620

Vulnrichment

Updated: 2024-08-02T23:03:21.362Z

NVD

Status : Analyzed

Published: 2024-03-21T11:15:28.230

Modified: 2025-09-16T16:25:21.517

Link: CVE-2023-52620

Redhat

Severity : Moderate

Publid Date: 2024-03-21T00:00:00Z

Links: CVE-2023-52620 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object