Lucene search

K

416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-42288

HistoryAug 17, 2024 - 9:15 a.m.

CVE-2024-42288

2024-08-1709:15:09

CWE-787

416baaa9-dc9f-4396-8d5f-8c081fb06d67

web.nvd.nist.gov

3

linux

kernel

vulnerability

memory corruption

qla2xxx

scsi

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix for possible memory corruption

Init Control Block is dereferenced incorrectly. Correctly dereference ICB

Affected configurations

Nvd

Node

linuxlinux_kernelRange<5.4.282

OR

linuxlinux_kernelRange5.5–5.10.224

OR

linuxlinux_kernelRange5.11–5.15.165

OR

linuxlinux_kernelRange5.16–6.1.103

OR

linuxlinux_kernelRange6.2–6.6.44

OR

linuxlinux_kernelRange6.7–6.10.3

VendorProductVersionCPE
linuxlinux_kernel*cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

References

git.kernel.org/stable/c/2a15b59a2c5afac89696e44acf5bbfc0599c6c5e

git.kernel.org/stable/c/571d7f2a08836698c2fb0d792236424575b9829b

git.kernel.org/stable/c/8192c533e89d9fb69b2490398939236b78cda79b

git.kernel.org/stable/c/87db8d7b7520e99de71791260989f06f9c94953d

git.kernel.org/stable/c/b0302ffc74123b6a99d7d1896fcd9b2e4072d9ce

git.kernel.org/stable/c/c03d740152f78e86945a75b2ad541bf972fab92a

git.kernel.org/stable/c/dae67169cb35a37ecccf60cfcd6bf93a1f4f5efb

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

Related for NVD:CVE-2024-42288

debiancve1 redhatcve1 vulnrichment1 osv8 cve1 cvelist1 nessus9 photon2 openvas1