CVE-2024-49843

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 3, 2025

Updated: Feb 5, 2025

CWE ID 129

Summary

CVE-2024-49843 is a newly identified vulnerability affecting the handling of IOCTL (Input/Output Control) commands in the GPU AHB (Advanced High-Performance Bus) bus error section. This issue results in memory corruption, allowing potentially malicious users to execute arbitrary code and gain unauthorized access to the system. The vulnerability can be exploited by sending specifically crafted IOCTL commands to the GPU driver, which can lead to serious security consequences. System administrators are advised to apply patches or updates as soon as they become available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zr2-Iw
https://www.cve.org/CVERecord?id=CVE-2024-49843
https://nvd.nist.gov/vuln/detail/CVE-2024-49843

Back to Vulnerability Database

CVE-2024-49843

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations