CVE-2024-46825

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 27, 2024

Updated: Nov 20, 2024

Summary

CVE-2024-46825: A vulnerability has been identified and addressed in the Linux kernel's iwlwifi component. The issue involved the function iwl_mvm_rcu_fw_link_id_to_link_conf(), which should have used IWL_FW_CHECK for input validation instead of WARN_ON. This oversight could potentially lead to security vulnerabilities when processing firmware input. The vulnerability has been rectified in the latest kernel updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linux Kernel

Affected Vendors

LINUX

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/yiWPbA
https://www.cve.org/CVERecord?id=CVE-2024-46825
https://nvd.nist.gov/vuln/detail/CVE-2024-46825

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners