CVE-2024-23196

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Feb 5, 2024

Updated: Feb 10, 2024

CWE ID 476

CWE ID 362

Summary

CVE-2024-23196 is a newly identified vulnerability affecting the Linux kernel's sound/hda device driver. In the snd_hdac_regmap_sync() function, a race condition has been discovered. Consequences of this condition include a null pointer dereference, potentially resulting in a kernel panic or denial of service incident. The vulnerability poses a significant risk, as a successful exploit could lead to system instability or unauthorized access. Further investigation and mitigation strategies are currently underway to address this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uJpN00
https://www.cve.org/CVERecord?id=CVE-2024-23196
https://nvd.nist.gov/vuln/detail/CVE-2024-23196

Back to Vulnerability Database

CVE-2024-23196

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations