CVE-2023-53488 [Medium] | Security Vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix possible panic during hotplug remove During hotplug remove it is possible that the update counters work might be pending, and may run after memory has been freed. Cancel the update counters work before freeing memory.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-10-01	—	0.02%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-10-01

—

0.02%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.5	3.1	MEDIUM	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:N) Doesn’t really leak secrets in a meaningful way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	1.8	3.6	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.5

3.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:N): Doesn’t really leak secrets in a meaningful way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

1.8

3.6

[email protected]

OS Trackers for CVE-2023-53488

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2023-53488 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2023-53488
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2023-53488
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2023-53488/
`ubuntu`	medium	CVE-2023-53488 medium priority: Ubuntu including 158 source packages (linux, linux-allwinner-5.19, …), 1414 status rows across 9 suites (bionic, focal, jammy, noble, plucky, questing, trusty, upstream, xenial): DNE 1017, ignored 161, released 138, not-affected 78, needed 19, needs-triage 1.	https://ubuntu.com/security/CVE-2023-53488

Affected software / configurations for CVE-2023-53488

Vendor	Product	Version	Raw CPE
linux	linux_kernel	>= 4.3, < 4.14.323	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.15, < 4.19.292	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.20, < 5.4.254	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.5, < 5.10.191	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.11, < 5.15.127	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.16, < 6.1.46	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.2, < 6.4.11	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	6.5	cpe:2.3:o:linux:linux_kernel:6.5:rc1::::::
linux	linux_kernel	6.5	cpe:2.3:o:linux:linux_kernel:6.5:rc2::::::
linux	linux_kernel	6.5	cpe:2.3:o:linux:linux_kernel:6.5:rc3::::::
linux	linux_kernel	6.5	cpe:2.3:o:linux:linux_kernel:6.5:rc4::::::
linux	linux_kernel	6.5	cpe:2.3:o:linux:linux_kernel:6.5:rc5::::::

References for CVE-2023-53488

URL	Tags
https://git.kernel.org/stable/c/33c677d1e087e437c7dcaad8d73402cf6add282e	Patch
https://git.kernel.org/stable/c/4fdfaef71fced490835145631a795497646f4555	Patch
https://git.kernel.org/stable/c/5e72f33ddfdb69cb21c1b59d31bbd3498d31b14a	Patch
https://git.kernel.org/stable/c/918c1e6843b7e81d0e5cf7994f41f28dc34c98b0	Patch
https://git.kernel.org/stable/c/ac6640f4193d0f5b44269a7f08372909f9a18e5c	Patch
https://git.kernel.org/stable/c/bfd727ad8411995218f336ead9f2becfde7f3a89	Patch
https://git.kernel.org/stable/c/c2145b18740c7e697748e4005ce93a5c683c86a8	Patch
https://git.kernel.org/stable/c/d32a5e9b825d40c08a43dfbcba007159fed41a5d	Patch

URL

CVE-2023-53488 | IB/hfi1: Fix possible panic during hotplug remove

Exploit prediction scoring system (EPSS) score for CVE-2023-53488

Common vulnerability scoring system (CVSS) metrics for CVE-2023-53488

Weakness enumeration for CVE-2023-53488

OS Trackers for CVE-2023-53488

Affected software / configurations for CVE-2023-53488

References for CVE-2023-53488