CVE-2024-56614

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 27, 2024

Updated: Jan 8, 2025

CWE ID 787

Summary

CVE-2024-56614 is a vulnerability affecting the Linux kernel, specifically the xsk module. The issue lies in the xsk_map_delete_elem function where an unsigned integer, map->max_entries, is compared against a signed integer, k, leading to an out-of-bounds (OOB) map_entry access. The OOB map_entry can then be used to cause an out-of-bounds write, potentially leading to further memory corruption. This vulnerability resulted in a kernel panic and out-of-bounds write, as indicated by the provided kernel stack trace.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/183jrD
https://www.cve.org/CVERecord?id=CVE-2024-56614
https://nvd.nist.gov/vuln/detail/CVE-2024-56614

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2024-56614

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations