1. Home
  2. Vulnerabilities
  3. CVE-2024-1086

CVE-2024-1086 (Flipping Pages)

CVSS v3.1 7.8 (High)
78% Progress
EPSS 0.29 % (70th)
0.29% Progress
Affected Products 15
Advisories 86
NVD Status Analyzed
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software Tools, Exploits & PoC Graph Web & Social Timeline

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation.

The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT.

We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

Weaknesses
CWE-416
Use After Free
Alias
CVE Status
PUBLISHED
NVD Status
Analyzed
CNA
Google Inc.
Published Date
2024-01-31 13:15:10
(7 months ago)
Updated Date
2024-08-14 19:41:08
(3 weeks ago)
Linux Kernel Use-After-Free Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
Description
Linux kernel contains a use-after-free vulnerability in the netfilter: nf_tables component that allows an attacker to achieve local privilege escalation.
Required Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Known to be Used in Ransomware Campaigns
Unknown
Notes
This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660
Vendor
Linux
Product
Kernel
In CISA Catalog from
2024-05-30
(3 months ago)
Due Date
2024-06-20
(2 months ago)

Affected Products

Debian

Fedoraproject

Linux

Netapp

Redhat

Configuration #1

    CPE23 From Up To
  Linux Kernel from 3.15 version and prior 5.15.149 version cpe:2.3:o:linux:linux_kernel >= 3.15 < 5.15.149
  Linux Kernel from 6.1 version and prior 6.1.76 version cpe:2.3:o:linux:linux_kernel >= 6.1 < 6.1.76
  Linux Kernel from 6.2 version and prior 6.6.15 version cpe:2.3:o:linux:linux_kernel >= 6.2 < 6.6.15
  Linux Kernel from 6.7 version and prior 6.7.3 version cpe:2.3:o:linux:linux_kernel >= 6.7 < 6.7.3
  Linux Kernel 6.8 Rc1 cpe:2.3:o:linux:linux_kernel:6.8:rc1

Configuration #2

    CPE23 From Up To
  Fedoraproject Fedora 39 cpe:2.3:o:fedoraproject:fedora:39

Configuration #3

    CPE23 From Up To
  Redhat Enterprise Linux Desktop 7.0 cpe:2.3:o:redhat:enterprise_linux_desktop:7.0
  Redhat Enterprise Linux for Ibm Z Systems 7.0 S390x cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:7.0_s390x
  Redhat Enterprise Linux for Power Big Endian 7.0 Ppc64 cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:7.0_ppc64
  Redhat Enterprise Linux for Power Little Endian 7.0 Ppc64le cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0_ppc64le
  Redhat Enterprise Linux Server 7.0 cpe:2.3:o:redhat:enterprise_linux_server:7.0
  Redhat Enterprise Linux Workstation 7.0 cpe:2.3:o:redhat:enterprise_linux_workstation:7.0

Configuration #4

    CPE23 From Up To
  Debian Linux 10.0 cpe:2.3:o:debian:debian_linux:10.0

Configuration #5

AND
    CPE23 From Up To
OR  
  Netapp A250 Firmware cpe:2.3:o:netapp:a250_firmware:-
OR  
  Running on/with
  Netapp A250 cpe:2.3:h:netapp:a250:-

Configuration #6

AND
    CPE23 From Up To
OR  
  Netapp 500f Firmware cpe:2.3:o:netapp:500f_firmware:-
OR  
  Running on/with
  Netapp 500f cpe:2.3:h:netapp:500f:-

Configuration #7

AND
    CPE23 From Up To
OR  
  Netapp C250 Firmware cpe:2.3:o:netapp:c250_firmware:-
OR  
  Running on/with
  Netapp C250 cpe:2.3:h:netapp:c250:-