CVE-2018-9439

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Dec 5, 2024
Updated: Dec 19, 2024
CWE ID 416

Summary

CVE-2018-9439 is a kernel vulnerability affecting the Linux kernel through the af_packet.c file. Specifically, in the functions unregister_prot_hook and packet_release, a use-after-free condition exists due to improper locking. This issue allows an attacker to potentially escalate privileges locally, gaining System execution privileges without requiring user interaction.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share