CVE-2024-53043

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 19, 2024
Updated: Nov 22, 2024
CWE ID 476

Summary

CVE-2024-53043: A vulnerability has been identified in the Linux kernel's mctp i2c component. When there is no neighbor table entry present, the header address can be NULL, leading the kernel to transmit packets without proper validation. This issue may allow malicious actors to inject malformed packets, potentially causing denial-of-service or more severe consequences. The vulnerability has been resolved.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share