{"uuid": "3d7b2899-effe-4789-851f-ad6b2556b6c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-52440", "type": "seen", "source": "https://t.me/arpsyndicate/3933", "content": "#ExploitObserverAlert\n\nCVE-2023-52440\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-52440. In the Linux kernel, the following vulnerability has been resolved:  ksmbd: fix slub overflow in ksmbd_decode_ntlmssp_auth_blob()  If authblob->SessionKey.Length is bigger than session key size(CIFS_KEY_SIZE), slub overflow can happen in key exchange codes. cifs_arc4_crypt copy to session key array from SessionKey from client.\n\nFIRST-EPSS: 0.000450000", "creation_timestamp": "2024-02-22T04:30:00.000000Z"}