How severe is CVE-2024-32922?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.4 out of 10.

What type of vulnerability is CVE-2024-32922?

This is classified as CWE-843, which is a common weakness in software security.

CVE-2024-32922 - HIGH Severity | CVSS 7.4

Vulnerability Description

In gpu_pm_power_on_top_nolock of pixel_gpu_power.c, there is a possible compromise of protected memory due to a logic error in the code. This could lead to local escalation of privilege to TEE with no additional execution privileges needed. User interaction is not needed for exploitation.

Related Vulnerabilities

CVE-2023-0286

HIGH

CVSS:7.4(High)

There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_...

CWE-8432023

CVE-2018-8133

HIGH

CVSS:7.5(High)

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." Thi...

CWE-8432018

CVE-2018-8229

HIGH

CVSS:7.5(High)

CWE-8432018

CVE-2018-8279

HIGH

CVSS:7.5(High)

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. T...

CWE-8432018

CVE-2018-8291

HIGH

CVSS:7.5(High)

A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects Chakr...

CWE-8432018

CVE-2018-8298

HIGH

CVSS:7.5(High)

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore....

CWE-8432018