CVE-2024-46975

Summary

CVE-2024-46975 is a newly identified vulnerability affecting the shared memory between Guest VMs and their GPU firmware. The issue permits a kernel software, installed and executed inside one Guest VM, to write data into the virtualized GPU memory of another Guest VM. This could potentially lead to unauthorized access or manipulation of the affected VM's data. The exploitation of this vulnerability may pose a serious security risk for organizations using virtualized environments with multiple Guest VMs. It is essential to apply patches or updates from the relevant vendors as soon as they become available to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.