CVE-2024-36963 | Linux Kernel up to 6.6.30/6.8.9 tracefs /sys/kernel/tracing current_tracer permission (5f91fc82794d/414fb0862814/baa23a8d4360)

Posted by Angelo Barbosa | Jun 3, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.6.30/6.8.9. It has been classified as critical. Affected is the function current_tracer of the file /sys/kernel/tracing of the component tracefs. The manipulation leads to permission issues.

This vulnerability is traded as CVE-2024-36963. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36963 | Linux Kernel up to 6.6.30/6.8.9 tracefs /sys/kernel/tracing current_tracer permission (5f91fc82794d/414fb0862814/baa23a8d4360)

Related Posts

CVE-2024-5526 | Grafana OnCall up to 1.5.1 Webhook server-side request forgery

CVE-2023-49085 | Cacti up to 1.2.25 pollers.php sql injection (GHSA-vr3c-38wh-g855)

CVE-2024-9830 | Bard Plugin up to 2.216 on WordPress add_query_arg cross site scripting

CVE-2023-49708 | Joomstar Starshop Component 1.0.0-1.0.9 on Joomla sql injection