{"vulnerability": "CVE-2023-5717", "sightings": [{"uuid": "c0fb6e60-7a49-45a1-9b6c-204d98ce6fb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html", "content": "", "creation_timestamp": "2024-11-16T23:00:00.000000Z"}, {"uuid": "b64e9cd1-52f1-4352-afca-7b29e274f1ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://t.me/arpsyndicate/775", "content": "#ExploitObserverAlert\n\nCVE-2023-5717\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-5717. A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation.  If perf_read_group() is called while an event's sibling_list is smaller than its child's sibling_list, it can increment or write to memory locations outside of the allocated buffer.  We recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.\n\nFIRST-EPSS: 0.000420000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2023-11-29T17:11:18.000000Z"}, {"uuid": "935895fc-5c05-4f98-b27d-53b1cd4da58c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-15", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "e5eb31de-4190-4170-8c16-5a48221b5498", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-09", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}, {"uuid": "a82a34c4-aef5-4d07-ae8c-8e14ca30846c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "published-proof-of-concept", "source": "https://t.me/ZeroDay_TM/950", "content": "1. CVE-2023-5717:\nLinux Kernel Perf OOB write\nhttps://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html\n\n2. CVE-2023-32428:\nmacOS LPE via Malloc Stack Logging\nhttps://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html\n]-> PoC\n\n3. CVE-2024-44175:\nmacOS diskarbitrationd Symlink Validation (TOCTOU LPE)\nhttps://hackyboiz.github.io/2024/11/27/clalxk/CVE-2024-44175\n\n#exploit\n-   -   -   -   -   -   -   -   -\n\u2022 @Old_Unclee\n\u2022 @ZeroDay_TM", "creation_timestamp": "2024-11-30T15:50:41.000000Z"}, {"uuid": "b5bb6657-f367-40a1-87e5-239059048d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11500", "content": "#exploit\n1. CVE-2023-5717:\nLinux Kernel Perf OOB write\nhttps://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html\n\n2. CVE-2023-32428:\nmacOS LPE via Malloc Stack Logging\nhttps://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html\n]-> PoC\n\n3. CVE-2024-44175:\nmacOS diskarbitrationd Symlink Validation (TOCTOU LPE)\nhttps://hackyboiz.github.io/2024/11/27/clalxk/CVE-2024-44175", "creation_timestamp": "2024-12-01T06:47:47.000000Z"}, {"uuid": "ea5fcef6-6160-46c8-9f53-35639074e8af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/5316", "content": "#exploit\n1. CVE-2023-5717:\nLinux Kernel Perf OOB write\nhttps://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html\n\n2. CVE-2023-32428:\nmacOS LPE via Malloc Stack Logging\nhttps://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html\n]-> PoC\n\n3. CVE-2024-44175:\nmacOS diskarbitrationd Symlink Validation (TOCTOU LPE)\nhttps://hackyboiz.github.io/2024/11/27/clalxk/CVE-2024-44175", "creation_timestamp": "2024-12-01T03:52:54.000000Z"}, {"uuid": "8e0033f8-4134-4cca-8a9f-92524eadf762", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5717", "type": "seen", "source": "https://t.me/DEVIL_La_RSx/1815", "content": "#exploit\n1. CVE-2023-5717:\nLinux Kernel Perf OOB write\nhttps://u1f383.github.io/linux/2024/11/17/linux-kernel-perf-cve-2023-5717-quick-analysis.html\n\n2. CVE-2023-32428:\nmacOS LPE via Malloc Stack Logging\nhttps://gergelykalman.com/badmalloc-CVE-2023-32428-a-macos-lpe.html\n]-> PoC\n\n3. CVE-2024-44175:\nmacOS diskarbitrationd Symlink Validation (TOCTOU LPE)\nhttps://hackyboiz.github.io/2024/11/27/clalxk/CVE-2024-44175", "creation_timestamp": "2024-12-02T02:36:32.000000Z"}]}