CVE-2023-28328

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-28328

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-28328.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-28328

Downstream

BELL-CVE-2023-28328

DEBIAN-CVE-2023-28328

DLA-3403-1

DLA-3404-1

OESA-2023-1209

OESA-2023-1210

OESA-2023-1211

OESA-2023-1212

RHSA-2023:6901

RHSA-2023:7077

RHSA-2024:0575

RHSA-2024:0724

SUSE-SU-2023:1608-1

SUSE-SU-2023:1609-1

SUSE-SU-2023:1710-1

SUSE-SU-2023:1800-1

SUSE-SU-2023:1801-1

SUSE-SU-2023:1803-1

SUSE-SU-2023:1811-1

SUSE-SU-2023:1848-1

SUSE-SU-2023:1892-1

SUSE-SU-2023:1894-1

SUSE-SU-2023:2232-1

SUSE-SU-2023:2506-1

SUSE-SU-2023:2805-1

UBUNTU-CVE-2023-28328

USN-5975-1

USN-5981-1

USN-5982-1

USN-5984-1

USN-5987-1

USN-5991-1

USN-6000-1

USN-6004-1

USN-6009-1

USN-6024-1

USN-6030-1

USN-6149-1

USN-6385-1

Related

Published

2023-04-19T23:15:07Z

Modified

2025-08-09T20:01:26Z

Severity

5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into the device. This flaw allows a local user to crash the system or potentially cause a denial of service.

References

Affected packages