CVE-2024-50282

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 19, 2024
Updated: Nov 21, 2024
CWE ID 120

Summary

CVE-2024-50282 is a recently identified vulnerability in the Linux kernel related to the AMDGPU driver. Specifically, a buffer overflow issue was discovered in the function amdgpu_debugfs_gprwave_read() due to a missing size check. This could potentially allow attackers to write outside the intended buffer boundaries if the size parameter is larger than 4K. The vulnerability has been resolved through the commit f5d873f5825b40d886d03bd2aede91d4cf002434.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share