CVE-2024-46974

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 31, 2025
CWE ID 863
CWE ID 266
CWE ID 274

Summary

CVE-2024-46974 is a newly disclosed cybersecurity vulnerability that impacts software running as a non-privileged user. This issue enables attackers to potentially conduct improper read/write operations on Direct Memory Access (DMA) buffers during import or export processes. Successful exploitation of this vulnerability could lead to unauthorized data access or modification, posing a significant risk to system security and confidentiality. It is strongly recommended that affected organizations apply the necessary patches or mitigations as soon as possible to protect against potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share