CVE-2024-27413 | Linux Kernel up to 6.7.8 capsule-loader capsule-loader.c efi_capsule_open allocation of resources

Inserito da Angelo Barbosa | Mag 17, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.7.8. It has been declared as problematic. Affected by this vulnerability is the function efi_capsule_open of the file drivers/firmware/efi/capsule-loader.c of the component capsule-loader. The manipulation leads to allocation of resources.

This vulnerability is known as CVE-2024-27413. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27413 | Linux Kernel up to 6.7.8 capsule-loader capsule-loader.c efi_capsule_open allocation of resources

Post correlati

CVE-2024-34205 | Totolink CP450 4.1.0cu.747_B20191224 download_firmware command injection

CVE-2024-8680 | MailChimp Plugin up to 4.9.16 on WordPress cross site scripting

CVE-2024-0532 | Tenda A15 15.13.07.13 Web-based Management Interface /goform/WifiExtraSet wpapsk_crypto2_4g stack-based overflow

CVE-2024-29999 | Microsoft unknown vulnerability