CVE-2024-22012

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Feb 7, 2024

Updated: Mar 12, 2024

CWE ID 787

Summary

CVE-2024-22012 is a newly disclosed vulnerability that allows for local privilege escalation. The issue stems from a missing bounds check, leading to an out-of-bounds write. This vulnerability is significant as no additional execution privileges are required for exploitation, making it potentially dangerous for affected systems. User interaction is not necessary for an attacker to take advantage of this flaw, making it a potential threat even in environments with strong access controls.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uBDqBR
https://www.cve.org/CVERecord?id=CVE-2024-22012
https://nvd.nist.gov/vuln/detail/CVE-2024-22012

Back to Vulnerability Database

CVE-2024-22012

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations