CVEFinder.io

CVE-2023-4134

🔶 medium
🔍 Scan for this CVE
Summary

A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.

CVSS Score
5.5
Medium
EPSS Score
0.0
Exploit Probability
Published Date
2024-11-14
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Lower Risk - more severe than 32.5% of all 328,009 vulnerabilities in our database.

#221,257
Below average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: Nov 14, 2024
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
🏆 Discovered By
Red Hat would like to thank Duoming Zhou for reporting this issue.
SSVC data provided by CISA
Last Modified 2024-11-18
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE IDs (Weakness Types)
CWE-416

📦 Affected Products 2

Vendor Product Status Affected Versions
linux linux_kernel Affected
< 6.5
fedoraproject fedora Affected
v38

🔗 References 2

https://access.redhat.com/security/cve/CVE-2023-4134
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2221700
Issue Tracking Patch Third Party Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2025-71313 🔶 medium 5.5 0.1 In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for alloc_wor... 2026-06-03
CVE-2025-71314 🔶 medium 5.5 0.1 In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Recover from panthor_gpu_flush_caches(... 2026-06-03
CVE-2026-46244 ⛔ critical 9.1 0.4 In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: Fix IPv6 inner_thoff desync ... 2026-06-03
CVE-2026-46245 🔶 medium 5.5 0.1 In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix dc_link NULL handling in HPD i... 2026-06-03
CVE-2026-46246 ⚠️ high 7.8 0.1 In the Linux kernel, the following vulnerability has been resolved: power: supply: pm8916_lbc: Fix use-after-free for e... 2026-06-03
CVE-2026-46247 🔶 medium 5.5 0.1 In the Linux kernel, the following vulnerability has been resolved: clk: qcom: gfx3d: add parent to parent request map ... 2026-06-03
These CVEs affect the same products