CVSS 3.1 Score 4.1 of 10 (medium)


Published Mar 5, 2024


CVE-2024-20833 is a use after free vulnerability that affects the pub_crypto_recv_msg function prior to the SMR Mar-2024 Release 1. This vulnerability is caused by a race condition and can be exploited by local attackers with system privilege to cause memory corruption. The risk score for this vulnerability is 5, indicating a high level of danger. The base severity is medium, with a base score of 4.1. Remediation measures are not provided in the given information, and the potential impact on an organization's confidentiality is none, while the integrity impact is high. The attack vector is local, and high privileges are required for exploitation. The exploitability score is 0.5, suggesting a moderate level of difficulty for attackers.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20833 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options