Security Advisory

CVE-2024-34748

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-28 19:13:40

Last updated 2025-01-28 21:07:52

Assigner google_android

State PUBLISHED

Description

In _DevmemXReservationPageAddress of devicemem_server.c, there is a possible use-after-free due to improper casting. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗