Security Vulnerabilities - CVEs Published In August 2024
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.
CVSS Score
7.9
EPSS Score
0.013
Published
2024-08-05
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to overwrite a guest's UMC seed potentially allowing reading of memory from a decommissioned guest.
CVSS Score
6.0
EPSS Score
0.009
Published
2024-08-05
Memory corruption can occur when arbitrary user-space app gains kernel level privilege to modify DDR memory by corrupting the GPU page table.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Memory corruption as fence object may still be accessed in timeline destruct after isync fence is released.
CVSS Score
8.4
EPSS Score
0.002
Published
2024-08-05
Memory corruption can occur if VBOs hold outdated or invalid GPU SMMU mappings, especially when the binding and reclaiming of memory buffers are performed at the same time.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05
Transient DOS while parsing the BSS parameter change count or MLD capabilities fields of the ML IE.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05
Transient DOS while parsing probe response and assoc response frame when received frame length is less than max size of timestamp.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05
Transient DOS while processing TID-to-link mapping IE elements.
CVSS Score
7.5
EPSS Score
0.003
Published
2024-08-05
Memory corruption while processing IOCTL call to set metainfo.
CVSS Score
8.4
EPSS Score
0.001
Published
2024-08-05