Vulnerability DatabaseCVE-2024-27404
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2024-27404
May 17, 2024
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix data races on remote_id Similar to the previous patch, address the data race on remote_id, adding the suitable ONCE annotations.
Related ResourcesĀ (7)
https://git.kernel.org/stable/c/987c3ed7297e5661bc7f448f06fc366e497ac9b2
https://nvd.nist.gov/vuln/detail/CVE-2024-27404
https://git.kernel.org/stable/c/2dba5774e8ed326a78ad4339d921a4291281ea6e
https://git.kernel.org/stable/c/e64148635509bf13eea851986f5a0b150e5bd066
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
https://git.kernel.org/stable/c/967d3c27127e71a10ff5c083583a038606431b61
https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/27xxx/CVE-2024-27404.json
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
LOW
User Interaction
NONE
Vulnerable System Confidentiality
NONE
Vulnerable System Integrity
NONE
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
4.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH
Weakness Type (CWE)
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-362
EPSS
Base Score:
0.01