CVE-2024-53069

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 19, 2024
Updated: Nov 22, 2024
CWE ID 476

Summary

CVE-2024-53069 is a recently identified vulnerability in the Linux kernel. This issue involves a NULL-pointer dereference in the qcom SCM driver. Under certain conditions, some SCM calls can be executed with the __scm pointer being null. If this occurs, the driver may not have been probed due to the absence of an SCM entry in the device-tree. To address this vulnerability, the Linux kernel team has resolved the issue by ensuring that NULL pointers are not dereferenced.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share