Lucene search
HistoryJan 23, 2024 - 9:15 a.m.
CVE-2024-23848
cve-2024-23848
linux kernel
use-after-free
cec_queue_msg_fh
nvd
security
vulnerability
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
Affected configurations
Node
linuxlinux_kernelRange≤6.7.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux:linux_kernel | linux linux kernel | le | 6.7.1 |
Related
ubuntucve
ubuntucve
CVE-2024-23848
2024-01-23 00:00:00
redhatcve
redhatcve
CVE-2024-23848
2024-01-25 18:56:58
cvelist
cvelist
CVE-2024-23848
2024-01-23 00:00:00
debiancve
debiancve
CVE-2024-23848
2024-01-23 09:15:35
prion
prion
Design/Logic Flaw
2024-01-23 09:15:00
nvd
nvd
CVE-2024-23848
2024-01-23 09:15:35
openvas
openvas
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1647-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1641-1)
2024-05-24 00:00:00
openSUSE: Security Advisory for the Linux Kernel (SUSE-SU-2024:1644-1)
2024-05-24 00:00:00
nessus
nessus
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:1641-1)
2024-05-15 00:00:00
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:1644-1)
2024-05-15 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:1648-1)
2024-05-15 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.2 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for CVE-2024-23848