CVE-2024-2314

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 10, 2024
Updated: Mar 11, 2024
CWE ID 125

Summary

CVE-2024-2314 is a vulnerability affecting the BCC (BPF Compiler Collection) tool. The issue lies in the way BCC handles the loading of kernel headers. If an attacker can manipulate the temporary directory where headers are extracted, they could force BCC to load compromised headers, potentially leading to system compromise. This vulnerability mainly affects Linux distributions that offer kernel headers optionally.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share