CVE-2024-53070
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 19, 2024
Updated: Nov 25, 2024
Summary
CVE-2024-53070 is a vulnerability affecting the Linux kernel's usb subsystem (dwc3). During system suspend, if a device is already runtime suspended, attempting to access the device registers will result in a crash. This issue prevents the registration of USB devices properly after the system resumes, potentially leading to system instability. The vulnerability is resolved by moving the call to enable the USB suspend functionality to the top of the dwc3_core_exit() function.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Linux Kernel
Affected Vendors
- LINUX