CVE-2024-33036

CVSS 3.1 Score 6.7 of 10 (medium)

Details

Published Dec 2, 2024
Updated: Dec 11, 2024
CWE ID 823

Summary

CVE-2024-33036 is a memory corruption vulnerability affecting a camera driver. During the processing of sensor packets, the driver fails to allocate sufficient memory in the kernel for a user-space variable, leading to potential issues such as huge allocations or invalid memory access. This inconsistency can result in unintended behavior or crashes, potentially allowing attackers to execute arbitrary code or cause denial-of-service conditions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share