CVE-2024-46693

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Sep 13, 2024
CWE ID 476

Summary

CVE-2024-46693 is a vulnerability in the Linux kernel affecting the initialization of pmic_glink child drivers, which can lead to a NULL pointer dereference. The issue arises when the protection-domain notifiers are triggered before client registration completes, resulting in the local "client" pointer being uninitialized. This vulnerability has a medium severity rating (base score of 4.7) with low privileges required for exploitation and is categorized under CWE-476 (NULL Pointer Dereference). To remediate this vulnerability, users should apply the patches provided in the references linked to the Linux kernel updates. If exploited, this vulnerability poses a high risk of availability impact on affected systems, potentially leading to system crashes or disruptions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share