CVE-2024-50291
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 19, 2024
Updated: Nov 27, 2024
CWE ID 129
Summary
CVE-2024-50291 is a newly discovered vulnerability in the Linux kernel's dvb-core component. This issue stems from a missing buffer index check in the function dvb_vb2_expbuf(). By exploiting this flaw, an attacker could potentially manipulate the buffer index and cause unexpected behavior or crashes in the system. The vulnerability has been addressed, and users are encouraged to update their kernels to the latest version to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Linux Kernel
Affected Vendors
- LINUX