Lucene search
416baaa9-dc9f-4396-8d5f-8c081fb06d67NVD:CVE-2024-43896HistoryAug 26, 2024 - 11:15 a.m.
CVE-2024-43896
2024-08-2611:15:04
CWE-476
416baaa9-dc9f-4396-8d5f-8c081fb06d67
web.nvd.nist.gov
2
linux kernel
vulnerability
asoc
cs-amp-lib
fix
null pointer crash
efi.get_variable
efi_rt_services_supported
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.5%
In the Linux kernel, the following vulnerability has been resolved:
ASoC: cs-amp-lib: Fix NULL pointer crash if efi.get_variable is NULL
Call efi_rt_services_supported() to check that efi.get_variable exists
before calling it.
Affected configurations
Node
linuxlinux_kernelRange6.9–6.10.5
ORlinuxlinux_kernelMatch6.11rc1
ORlinuxlinux_kernelMatch6.11rc2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| linux | linux_kernel | * | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc1:*:*:*:*:*:* |
| linux | linux_kernel | 6.11 | cpe:2.3:o:linux:linux_kernel:6.11:rc2:*:*:*:*:*:* |
Related
cve
cve
CVE-2024-43896
2024-08-26 11:15:04
osv
osv
CVE-2024-43896
2024-08-26 11:15:04
debiancve
debiancve
CVE-2024-43896
2024-08-26 11:15:04
vulnrichment
vulnrichment
redhatcve
redhatcve
CVE-2024-43896
2024-08-27 15:11:02
ubuntucve
ubuntucve
CVE-2024-43896
2024-08-26 00:00:00
cvelist
cvelist
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.5%
Related for NVD:CVE-2024-43896