Unknown
CVE-2024-0229
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2024-0229
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if the server runs with extended privileges), or remote code execution in SSH X11 forwarding environments.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
- fedoraproject,
- redhat,
- x.org
Products
- enterprise linux 7.0,
- enterprise linux 8.0,
- enterprise linux 9.0,
- enterprise linux aus 8.2,
- enterprise linux aus 8.4,
- enterprise linux eus 8.6,
- enterprise linux eus 8.8,
- enterprise linux eus 9.0,
- enterprise linux eus 9.2,
- enterprise linux tus 8.2,
- enterprise linux tus 8.4,
- enterprise linux update services for sap solutions 8.2,
- enterprise linux update services for sap solutions 8.4,
- fedora 39,
- x server,
- xwayland
References
Miscellaneous
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below: