CVE-2024-49863 | Linux Kernel up to 6.11.2 scsi vhost_scsi_get_req null pointer dereference

Posted by Angelo Barbosa | Oct 21, 2024 | CVE

A vulnerability has been found in Linux Kernel up to 6.11.2 and classified as critical. This vulnerability affects the function vhost_scsi_get_req of the component scsi. The manipulation leads to null pointer dereference.

This vulnerability was named CVE-2024-49863. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-49863 | Linux Kernel up to 6.11.2 scsi vhost_scsi_get_req null pointer dereference

Related Posts

CVE-2024-45796 | OISF Suricata up to 7.0.6 Traffic Reassembly off-by-one (ID 7067)

CVE-2024-36012 | Linux Kernel up to 6.1.90/6.6.30/6.8.9 Bluetooth kernel/locking/mutex.c msft_do_close use after free

CVE-2024-28403 | Totolink X2000R prior 1.0.0-B20231213.1013 VPN Page cross site scripting

CVE-2021-47457 | Linux Kernel up to 5.10.75/5.14.14 net/can/isotp.c isotp_sendmsg buffer overflow (053bc12df0d6/a76abedd2be3/9acf636215a6)