CVE-2024-25740
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2024-25740 is a memory leak vulnerability affecting the UBI driver in the Linux kernel through version 6.7.4. This issue arises due to the failure to release the memory associated with kobj->name during the processing of UBI_IOCATT. This memory leak can lead to potential denial-of-service attacks or system instability. An attacker can exploit this flaw by sending maliciously crafted input to the affected system, resulting in excessive memory consumption and potential system crashes. It is strongly recommended to update the Linux kernel to the latest version to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.