How severe is CVE-2024-25079?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.4 out of 10.

What type of vulnerability is CVE-2024-25079?

This is classified as CWE-763, which is a common weakness in software security.

CVE-2024-25079

HIGH Year: 2024

CVSS v3 Score

7.4

High

Weakness Type

CWE-763

View all →

Vulnerability Description

A memory corruption vulnerability in HddPassword in Insyde InsydeH2O kernel 5.2 before 05.29.09, kernel 5.3 before 05.38.09, kernel 5.4 before 05.46.09, kernel 5.5 before 05.54.09, and kernel 5.6 before 05.61.09 could lead to escalating privileges in SMM.

CVE-2020-36224

HIGH

CVSS:7.5(High)

A flaw was discovered in OpenLDAP before 2.4.57 leading to an invalid pointer free and slapd crash in the saslAuthzTo processing, resulting in denial of service.

CWE-7632020

CVE-2020-5139

HIGH

CVSS:7.5(High)

A vulnerability in SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS) due to the release of Invalid pointer and leads to a firewall crash. This vulnerabil...

CWE-7632020

CVE-2020-9098

HIGH

CVSS:7.5(High)

Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the in...

CWE-7632020

CVE-2022-28203

HIGH

CVSS:7.5(High)

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can re...

CWE-7632022