CVE-2024-1151

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 11, 2024
Updated: Feb 22, 2024
CWE ID 121

Summary

CVE-2024-1151 is a vulnerability reported in the Open vSwitch sub-component in the Linux Kernel. It is categorized as a stack-based buffer overflow (CWE-121). The flaw occurs when a recursive operation of code push recursively calls into the code block, causing a stack overflow. This can lead to a crash or other related issues. The vulnerability has a base severity rating of MEDIUM and an exploitability score of 1.8, indicating that it can be exploited with low privileges and no user interaction required. The attack vector is local, and the availability impact is high. Organizations using affected versions of Open vSwitch in their Linux Kernel should apply the necessary patches or updates to remediate this vulnerability and prevent potential exploitation.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-1151 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options