CVE-2024-43911

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 26, 2024
Updated: Aug 27, 2024
CWE ID 476

Summary

CVE-2024-43911 is a vulnerability affecting the Linux kernel, specifically related to a NULL pointer dereference in the mac80211 subsystem during the initiation of a transmission block acknowledgment (TX BA) session. This issue arises from improper handling of dynamically allocated link data, which can lead to crash logs indicating a supervisor read access error in kernel mode. The vulnerability has been assigned a medium severity rating with an exploitability score of 1.8, permitting local attackers with low privileges to potentially disrupt system availability. To remediate this vulnerability, users should apply the relevant patches provided in updates to their Linux kernel version. Organizations utilizing affected products should prioritize these updates to mitigate potential service interruptions and maintain system integrity.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share