CVE-2023-53125 [Medium] | Information Disclosure in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb->len Packet length retrieved from skb data may be larger than the actual socket buffer length (up to 9026 bytes). In such case the cloned skb passed up the network stack will leak kernel memory contents.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-02-26	0.02%	0.06%	+0.04%
2	2025-05-03	—	0.02%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-02-26

0.02%

0.06%

+0.04%

2025-05-03

—

0.02%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.5	3.1	MEDIUM	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:N) Doesn’t really leak secrets in a meaningful way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	1.8	3.6	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.5

3.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:N): Doesn’t really leak secrets in a meaningful way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

1.8

3.6

[email protected]

OS Trackers for CVE-2023-53125

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2023-53125 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2023-53125
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2023-53125
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2023-53125/
`ubuntu`	medium	CVE-2023-53125 medium priority: Ubuntu including 158 source packages (linux, linux-allwinner-5.19, …), 1551 status rows across 10 suites (bionic, focal, jammy, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 1145, ignored 150, released 142, not-affected 94, needed 19, needs-triage 1.	https://ubuntu.com/security/CVE-2023-53125

Affected software / configurations for CVE-2023-53125

Vendor	Product	Version	Raw CPE
linux	linux_kernel	>= 2.6.35, < 4.14.311	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.15, < 4.19.279	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.20, < 5.4.238	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.5, < 5.10.176	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.11, < 5.15.104	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.16, < 6.1.21	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.2, < 6.2.8	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:-::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc2::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc3::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc4::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc5::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc6::::::
linux	linux_kernel	2.6.34	cpe:2.3:o:linux:linux_kernel:2.6.34:rc7::::::
linux	linux_kernel	6.3	cpe:2.3:o:linux:linux_kernel:6.3:rc1::::::
linux	linux_kernel	6.3	cpe:2.3:o:linux:linux_kernel:6.3:rc2::::::

References for CVE-2023-53125

URL	Tags
https://git.kernel.org/stable/c/105db6574281e1e03fcbf87983f4fee111682306	Patch
https://git.kernel.org/stable/c/4a4de0a68b18485c68ab4f0cfa665b1633c6d277	Patch
https://git.kernel.org/stable/c/53966d572d056d6b234cfe76a5f9d60049d3c178	Patch
https://git.kernel.org/stable/c/8ee5df9c039e37b9d8eb5e3de08bfb7f53d31cb6	Patch
https://git.kernel.org/stable/c/9fabdd79051a9fe51388df099aff6e4b660fedd2	Patch
https://git.kernel.org/stable/c/c7bdc137ca163b90917c1eeba4f1937684bd4f8b	Patch
https://git.kernel.org/stable/c/d8b228318935044dafe3a5bc07ee71a1f1424b8d	Patch
https://git.kernel.org/stable/c/e294f0aa47e4844f3d3c8766c02accd5a76a7d4e	Patch

URL

CVE-2023-53125 | net: usb: smsc75xx: Limit packet length to skb->len

Exploit prediction scoring system (EPSS) score for CVE-2023-53125

Common vulnerability scoring system (CVSS) metrics for CVE-2023-53125

Weakness enumeration for CVE-2023-53125

OS Trackers for CVE-2023-53125

Affected software / configurations for CVE-2023-53125

References for CVE-2023-53125