CVE-2024-2881

Summary

CVE-2024-2881 is a fault injection vulnerability found in the wc_ed25519_sign_msg function within WolfSSL version 5.6.6, affecting both Linux and Windows systems. This vulnerability allows a remote attacker who shares the same system as a victim process to exploit Rowhammer fault injection, potentially leading to information disclosure and privilege escalation via manipulation of the ed25519_key structure. To mitigate this risk, organizations should upgrade to WolfSSL version 5.7.0 or later, as recommended in the release notes. The vulnerability has been assessed with a medium severity rating (base score of 6.7), indicating significant risks to confidentiality and integrity with relatively low privileges required for exploitation. The attack vector is categorized as adjacent network, emphasizing that an attacker must be on the same local network to exploit it effectively.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.