CVE-2023-53399: ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: fix NULL pointer dereference in smb2_get_info_filesystem()
If share is , share->path is NULL and it cause NULL pointer
dereference issue.
Security readout for executives and security teams
Plain-English summary
CVE-2023-53399 is a Linux kernel ksmbd flaw where a missing share path can trigger a NULL pointer dereference. The practical impact is denial of service, not data theft or code execution based on the supplied sources. It matters most for Linux systems using the in-kernel SMB server.
Executive priority
Treat as a moderate availability risk. It is not presented as data compromise or remote code execution, but SMB file-service outages can be operationally disruptive. Prioritize internet-facing or business-critical file-sharing hosts after confirming ksmbd use.
Technical view
The bug is in ksmbd's smb2_get_info_filesystem() path. If the share object has a NULL path, dereferencing share->path can crash kernel execution. The CVSS vector is local, low complexity, low privileges, no user interaction, unchanged scope, and high availability impact.
Likely exposure
Exposure is most likely on Linux hosts where ksmbd is enabled or packaged into deployed kernels, especially SMB file-sharing systems. The supplied affected data names Linux kernel versions and stable commit ranges, but does not identify distributions, appliances, or default configurations.
Exploitation context
The source bundle does not show CISA KEV listing or cited active exploitation. The provided CVSS vector indicates local access with low privileges is required. No exploit maturity, public exploit, or remote attack evidence is included in the supplied material.
Researcher notes
Evidence supports a CWE-476 NULL pointer dereference in Linux ksmbd with high availability impact. The affected-version metadata is limited and somewhat terse, so distribution-level impact and fixed package mapping require vendor advisory confirmation.
Mitigation direction
Update to a Linux kernel or vendor package containing the referenced stable ksmbd fix.
Prioritize systems running ksmbd or providing SMB service from the Linux kernel.
If ksmbd is unnecessary, disable it according to vendor guidance.
Check distribution advisories for exact fixed package versions before change windows.
Validation and detection
Inventory Linux systems using ksmbd or kernel SMB server functionality.
Compare deployed kernel versions against vendor advisories and the referenced stable commits.
Confirm whether SMB service exposure depends on ksmbd rather than Samba user-space services.
Review crash logs for ksmbd-related NULL dereference events.
Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.
Potential ATT&CK relevance
Conservative CVE-to-ATT&CK context
These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.
ATT&CK lookup starting points
Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.
cwe · low confidence lookup
CWE-476: Exact CWE lookup
Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.
These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.
We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.
CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.
CWE-476 · source CWE mapping
NULL Pointer Dereference
NULL Pointer Dereference represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.