CVE-2024-46673

Summary

CVE-2024-46673 identifies a vulnerability in the Linux kernel related to a double-free error in the aacraid SCSI driver, which can occur during the hardware initialization process. Affected products include various models associated with the aacraid driver, potentially impacting systems that rely on this hardware for storage. The vulnerability poses a high security risk, with CVSS scores indicating potential high integrity and confidentiality impacts, as well as high availability impacts due to its local attack vector. Remediation involves applying patches available through the Linux kernel repository to address the memory management issue. Organizations should prioritize updating affected systems to mitigate associated risks of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.