CVE-2024-47892

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 13, 2024
Updated: Dec 16, 2024
CWE ID 362
CWE ID 416

Summary

CVE-2024-47892 is a newly disclosed vulnerability that impacts software running as a non-privileged user. It allows an attacker to perform GPU system calls on freed physical memory, enabling them to read and write data without proper authorization. This issue poses a potential security risk as it could lead to information disclosure or unintended modifications. It is essential for organizations to apply patches or mitigations promptly to protect their systems from potential attacks. The vulnerability does not require elevated privileges, making it a stealthy and potentially dangerous threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share