CVSS 3.1 Score 7.8 of 10 (high)


Published Jan 28, 2024
Updated: Feb 2, 2024
CWE ID 476


CVE-2024-0841 is a null pointer dereference vulnerability in the Linux kernel hugetlbfs functionality. It affects several products, including eCJhJy, eCJhKK, aXjN6B, sgaPme, d0rE62, and nv-TCv. This vulnerability could allow a local user to crash the system or potentially escalate their privileges on the system. The base severity of this vulnerability is rated as HIGH with a CVSS score of 7.8. The impact includes high integrity and confidentiality impact, with low attack complexity and low privileges required. Remediation measures should be taken to address this vulnerability promptly to mitigate the danger it poses to organizations using affected products.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-0841 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options