Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-2496

Опубликовано: 18 мар. 2024
Источник: nvd
CVSS3: 5
CVSS3: 5.5
EPSS Низкий

Описание

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:redhat:libvirt:*:*:*:*:*:*:*:*
Версия до 9.8.0 (исключая)
Конфигурация 2

Одно из

cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

EPSS

Процентиль: 6%
0.00028
Низкий

5 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2024-2496

CVSS3: 5
ubuntu
больше 1 года назад

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.

redhat логотип

CVE-2024-2496

CVSS3: 5
redhat
больше 1 года назад

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.

msrc логотип

CVE-2024-2496

CVSS3: 5.5
msrc
12 месяцев назад

Описание отсутствует

debian логотип

CVE-2024-2496

CVSS3: 5
debian
больше 1 года назад

A NULL pointer dereference flaw was found in the udevConnectListAllInt ...

github логотип

GHSA-mfxp-38jc-24qj

CVSS3: 5
github
больше 1 года назад

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.

EPSS

Процентиль: 6%
0.00028
Низкий

5 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-476