CVE-2024-0340 in Linuxinformação

Sumário

de MITRE • 09/01/2024

A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This issue can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

Red Hat, Inc.

Reservar

09/01/2024

Divulgação

09/01/2024

Moderação

aceite

Entrada

VDB-250108

CPE

pronto

CWE

CWE-200 (confirmado)

CVSS

5.5 (NVD)

EPSS

0.00006

KEV

não

Atividades

muito baixo

Sector

Pharma, Telecommunication, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-0340
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-0340
CVE Details	https://www.cvedetails.com/cve/CVE-2024-0340/

◂ Voltar Visão Geral Próximo ▸

Do you need the next level of professionalism?

Upgrade your account now!