CVE-2024-0229

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 9, 2024

Updated: May 22, 2024

CWE ID 788

Summary

CVE-2024-0229 is a newly disclosed vulnerability in the X.Org server software. This issue arises when a device that was previously frozen by a sync grab is reconnected to a different master device. The out-of-bounds memory access flaw can result in various consequences, including application crashes, local privilege escalation if the server is run with elevated privileges, or even remote code execution, posing a significant threat in SSH X11 forwarding environments.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uBDEvQ
https://www.cve.org/CVERecord?id=CVE-2024-0229
https://nvd.nist.gov/vuln/detail/CVE-2024-0229

Back to Vulnerability Database

CVE-2024-0229

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations