CVE Catalog

CVE-2023-32251

LowCVSS 3.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.42%

33th percentile — higher than 33% of all known CVEs

Summary

A vulnerability in the Linux kernel's ksmbd component (SMB/CIFS server) allows bypassing a security control that introduces a 5-second delay during session setup to prevent dictionary attacks. This bypass can be achieved through the use of asynchronous requests.

Risk Assessment

Bypassing the anti-brute-force protection enables an attacker to more efficiently conduct dictionary attacks against user credentials or other authentication mechanisms, increasing the risk of unauthorized system access.

Recommendation

It is recommended to immediately update the Linux kernel to a version containing the fix for CVE-2023-32251. If an update is not possible, consider temporarily disabling the ksmbd server or restricting access to it only from trusted networks.

Original NVD description (English source)

A vulnerability has been identified in the Linux kernel's ksmbd component (kernel SMB/CIFS server). A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This bypass negates the intended anti-brute-force protection, potentially allowing attackers to conduct dictionary attacks more efficiently against user credentials or other authentication mechanisms.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS