CVE-2024-49860

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-843
View all →

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of _STR method Only buffer objects are valid return values of _STR. If something else is returned description_show() will access invalid memory.

Related Vulnerabilities

CVE-2019-8591

HIGH
CVSS:7.1(High)

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. An application may be able to cause unexpected syst...

CWE-8432019

CVE-2023-23442

HIGH
CVSS:7.1(High)

Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak.

CWE-8432023

CVE-2023-23443

HIGH
CVSS:7.1(High)

Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak.

CWE-8432023

CVE-2023-51426

HIGH
CVSS:7.1(High)

Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak.

CWE-8432023

CVE-2023-51427

HIGH
CVSS:7.1(High)

Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak.

CWE-8432023

CVE-2023-51428

HIGH
CVSS:7.1(High)

Some Honor products are affected by type confusion vulnerability, successful exploitation could cause information leak.

CWE-8432023