CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-44994

Medium Severity
Linux
SVRS
30/100
CVSSv3
5.5/10
EPSS
0.00037/1

CVE-2024-44994: A bug in the Linux kernel's IOMMU (Input/Output Memory Management Unit) code can lead to system instability. Specifically, a missing return statement in the iommu_report_device_fault() function causes the kernel to attempt to re-process a partial fault, leading to a crash. The resolution involves restoring the accidentally deleted return statement, preventing the erroneous fault re-processing. The SVRS score of 30 indicates a low level of immediate risk according to SOCRadar, although any kernel vulnerability should be addressed in a timely fashion to maintain system security. While the CVSS score is moderate, the potential for a kernel crash emphasizes the importance of applying the fix. Addressing this vulnerability will prevent potential system crashes caused by improper fault handling.

TAGS
No tags available
VECTOR STRING
CVSS:3.1
AV:L
AC:L
PR:L
UI:N
S:U
C:N
I:N
A:H
PUBLICATION DATE2024-09-04
LAST MODIFIED2024-10-10

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

CVE-2024-44994 | Linux Kernel up to 6.10.6 iommu_report_device_fault denial of service (cc6bc2ab1663/fca5b78511e9 / Nessus ID 212415)
vuldb.com2024-12-11
CVE-2024-44994 | Linux Kernel up to 6.10.6 iommu_report_device_fault denial of service (cc6bc2ab1663/fca5b78511e9 / Nessus ID 212415) | A vulnerability has been found in Linux Kernel up to 6.10.6 and classified as critical. This vulnerability affects the function iommu_report_device_fault. The manipulation leads to denial of service. This vulnerability was named CVE-2024-44994. The attack can only be done within
vuldb.com
rss
forum
news

Social Media

CVE-2024-44994 In the Linux kernel, the following vulnerability has been resolved: iommu: Restore lost return in iommu_report_device_fault() When iommu_report_device_fault gets ca… https://t.co/A25y3C9u04
0
0
0

Affected Software

Configuration 1
TypeVendorProduct
OSLinuxlinux_kernel

References

ReferenceLink
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/cc6bc2ab1663ec9353636416af22452b078510e9
416BAAA9-DC9F-4396-8D5F-8C081FB06D67https://git.kernel.org/stable/c/fca5b78511e98bdff2cdd55c172b23200a7b3404

CWE Details

No CWE details found for this CVE

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence