CVE-2024-3567

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 10, 2024

Updated: Jun 10, 2024

CWE ID 617

Summary

CVE-2024-3567: A vulnerability was identified in QEMU's net_tx_pkt.c file. The issue lies within the update_sctp_checksum() function and occurs when processing short-sized fragmented packets. The flaw results in an assertion failure, leading to a crash of QEMU, thereby causing a denial of service condition for the host system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

QEMU
Red Hat Enterprise Linux

Affected Vendors

Qemu
Red Hat

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vTu-TE
https://www.cve.org/CVERecord?id=CVE-2024-3567
https://nvd.nist.gov/vuln/detail/CVE-2024-3567

Back to Vulnerability Database