CVE-2024-0443

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 12, 2024
Updated: Jan 18, 2024
CWE ID 402
CWE ID 668

Summary

A vulnerability with the CVE ID CVE-2024-0443 has been identified in the Linux kernel. The flaw is located in the blkgs destruction path in block/blk-cgroup.c, leading to a cgroup blkio memory leakage problem. This vulnerability affects multiple products, including aXjN6B, d0rE62, sdMtgZ, and others. An attacker with local access may exploit this vulnerability to cause system instability, such as triggering an out of memory error. The risk score for this vulnerability is 25, indicating a medium severity level. The base score is 5.5, and the exploitability score is 1.8. The attack vector is local, and low privileges are required for exploitation. The potential impact includes high availability impact while integrity and confidentiality impacts are none.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0443 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options