CVE-2024-41035 | Linux Kernel up to 6.9.9 USB config.c endpoint_is_duplicate bEndpointAddress Privilege Escalation

Posted by Angelo Barbosa | Jul 29, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.9.9. It has been declared as problematic. This vulnerability affects the function endpoint_is_duplicate of the file config.c of the component USB. The manipulation of the argument bEndpointAddress leads to Privilege Escalation.

This vulnerability was named CVE-2024-41035. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41035 | Linux Kernel up to 6.9.9 USB config.c endpoint_is_duplicate bEndpointAddress Privilege Escalation

Related Posts

CVE-2023-6781 | Orbit Fox Companion Plugin up to 2.10.26 on WordPress Custom Fields cross site scripting

CVE-2023-52445 | Linux Kernel up to 6.7.1 pvrusb2 pvr2_context_thread_func use after free

CVE-2023-52468 | Linux Kernel up to 6.6.13/6.7.1 Kasan class_register use after free (b57196a5ec5e/0f1486dafca3/93ec4a3b7640)

CVE-2024-23076 | FreeChart 1.5.4 BubbleXYItemLabelGenerator.java null pointer dereference