cvedb.io
CVE-2023-1989
HIGH · CVSS 7
EPSS exploitation probability: 0%
Published 2023-04-11T21:15:15.503 · Last modified 2026-06-17T05:29:12.707

Summary

A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.

Affected products

linux — linux_kernel

Does this affect you?

Add your gear to cvedb and we'll alert you only when linux ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.