How severe is CVE-2024-50076?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.5 out of 10.

What type of vulnerability is CVE-2024-50076?

This is classified as CWE-909, which is a common weakness in software security.

CVE-2024-50076

MEDIUM Year: 2024

CVSS v3 Score

6.5

Medium

Weakness Type

CWE-909

View all →

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: vt: prevent kernel-infoleak in con_font_get() font.data may not initialize all memory spaces depending on the implementation of vc->vc_sw->con_font_get. This may cause info-leak, so to prevent this, it is safest to modify it to initialize the allocated memory space to 0, and it generally does not affect the overall performance of the system.

CVE-2019-9247

MEDIUM

CVSS:6.5(Medium)

In AAC Codec, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. ...

CWE-9092019

CVE-2019-9313

MEDIUM

CVSS:6.5(Medium)

In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitat...

CWE-9092019

CVE-2019-9314

MEDIUM

CVSS:6.5(Medium)

In libavc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Pro...

CWE-9092019

CVE-2019-9315

MEDIUM

CVSS:6.5(Medium)

In libhevc, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Pr...

CWE-9092019