CVE-2024-50291

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 19, 2024
Updated: Nov 27, 2024
CWE ID 129

Summary

CVE-2024-50291 is a newly discovered vulnerability in the Linux kernel's dvb-core component. This issue stems from a missing buffer index check in the function dvb_vb2_expbuf(). By exploiting this flaw, an attacker could potentially manipulate the buffer index and cause unexpected behavior or crashes in the system. The vulnerability has been addressed, and users are encouraged to update their kernels to the latest version to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share