CVE-2024-0443
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
A vulnerability with the CVE ID CVE-2024-0443 has been identified in the Linux kernel. The flaw is located in the blkgs destruction path in block/blk-cgroup.c, leading to a cgroup blkio memory leakage problem. This vulnerability affects multiple products, including aXjN6B, d0rE62, sdMtgZ, and others. An attacker with local access may exploit this vulnerability to cause system instability, such as triggering an out of memory error. The risk score for this vulnerability is 25, indicating a medium severity level. The base score is 5.5, and the exploitability score is 1.8. The attack vector is local, and low privileges are required for exploitation. The potential impact includes high availability impact while integrity and confidentiality impacts are none.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions