{"uuid": "b64e9cd1-52f1-4352-afca-7b29e274f1ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://t.me/arpsyndicate/775", "content": "#ExploitObserverAlert\n\nCVE-2023-5717\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5717. A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation.  If perf_read_group() is called while an event's sibling_list is smaller than its child's sibling_list, it can increment or write to memory locations outside of the allocated buffer.  We recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.\n\nFIRST-EPSS: 0.000420000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-29T17:11:18.000000Z"}