CVE-2024-24898
6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.7%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in openEuler kernel on Linux allows Resource Leak Exposure. This vulnerability is associated with program files https://gitee.Com/openeuler/kernel/blob/openEuler-1.0-LTS/drivers/staging/gmjstcm/tcm.C.
This issue affects kernel: from 4.19.90-2109.1.0.0108 before 4.19.90-2403.4.0.0244.
CNA Affected
[
{
"collectionURL": "https://gitee.com/openeuler",
"defaultStatus": "unaffected",
"packageName": "kernel",
"platforms": [
"Linux"
],
"product": "kernel",
"programFiles": [
"https://gitee.com/openeuler/kernel/blob/openEuler-1.0-LTS/drivers/staging/gmjstcm/tcm.c"
],
"repo": "https://gitee.com/openeuler/kernel",
"vendor": "openEuler",
"versions": [
{
"changes": [
{
"at": "c04a1c6afc6bca0fa5739ecf4f58e4723d82e82f",
"status": "unaffected"
},
{
"at": "4a049cbb02e83fdd7bd9400b6b6b27d1cda4fc99",
"status": "unaffected"
},
{
"at": "08f66d6cf651fabd9dff262c300cb8cd7f8f0741",
"status": "unaffected"
},
{
"at": "a3360846085a5558e5d8f9dd42a5c2e83345b4db",
"status": "unaffected"
}
],
"lessThan": "4.19.90-2403.4.0.0244",
"status": "affected",
"version": "4.19.90-2109.1.0.0108",
"versionType": "git"
}
]
}
]Related
6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
15.7%