Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2024-1086
Analyzed
More InfoOfficial Page
Source-cve-coordination@google.com
View Known Exploited Vulnerability (KEV) details
Published At-31 Jan, 2024 | 13:15
Updated At-27 Oct, 2025 | 17:06

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
2024-05-302024-06-20Linux Kernel Use-After-Free VulnerabilityApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Date Added: 2024-05-30
Due Date: 2024-06-20
Vulnerability Name: Linux Kernel Use-After-Free Vulnerability
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary3.17.8HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Secondary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.8
Base severity: HIGH
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Linux Kernel Organization, Inc
linux
>>linux_kernel>>Versions from 3.15(inclusive) to 5.15.149(exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Linux Kernel Organization, Inc
linux
>>linux_kernel>>Versions from 6.1(inclusive) to 6.1.76(exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Linux Kernel Organization, Inc
linux
>>linux_kernel>>Versions from 6.2(inclusive) to 6.6.15(exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Linux Kernel Organization, Inc
linux
>>linux_kernel>>Versions from 6.7(inclusive) to 6.7.3(exclusive)
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Linux Kernel Organization, Inc
linux
>>linux_kernel>>6.8
cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*
Fedora Project
fedoraproject
>>fedora>>39
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_desktop>>7.0
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_for_ibm_z_systems>>7.0_s390x
cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems:7.0_s390x:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_for_power_big_endian>>7.0_ppc64
cpe:2.3:o:redhat:enterprise_linux_for_power_big_endian:7.0_ppc64:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_for_power_little_endian>>7.0_ppc64le
cpe:2.3:o:redhat:enterprise_linux_for_power_little_endian:7.0_ppc64le:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_server>>7.0
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
Red Hat, Inc.
redhat
>>enterprise_linux_workstation>>7.0
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Debian GNU/Linux
debian
>>debian_linux>>10.0
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>a250_firmware>>-
cpe:2.3:o:netapp:a250_firmware:-:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>a250>>-
cpe:2.3:h:netapp:a250:-:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>500f_firmware>>-
cpe:2.3:o:netapp:500f_firmware:-:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>500f>>-
cpe:2.3:h:netapp:500f:-:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>c250_firmware>>-
cpe:2.3:o:netapp:c250_firmware:-:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>c250>>-
cpe:2.3:h:netapp:c250:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-416Secondarycve-coordination@google.com
CWE-416Primarynvd@nist.gov
CWE ID: CWE-416
Type: Secondary
Source: cve-coordination@google.com
CWE ID: CWE-416
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://www.openwall.com/lists/oss-security/2024/04/10/22cve-coordination@google.com
Mailing List
Patch
http://www.openwall.com/lists/oss-security/2024/04/10/23cve-coordination@google.com
Mailing List
Patch
http://www.openwall.com/lists/oss-security/2024/04/14/1cve-coordination@google.com
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/15/2cve-coordination@google.com
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/17/5cve-coordination@google.com
Exploit
Mailing List
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660cve-coordination@google.com
Patch
https://github.com/Notselwyn/CVE-2024-1086cve-coordination@google.com
Exploit
Third Party Advisory
https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660cve-coordination@google.com
Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.htmlcve-coordination@google.com
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.htmlcve-coordination@google.com
Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/cve-coordination@google.com
Mailing List
https://news.ycombinator.com/item?id=39828424cve-coordination@google.com
Issue Tracking
https://pwning.tech/nftables/cve-coordination@google.com
Exploit
Technical Description
Third Party Advisory
https://security.netapp.com/advisory/ntap-20240614-0009/cve-coordination@google.com
Third Party Advisory
http://www.openwall.com/lists/oss-security/2024/04/10/22af854a3a-2127-422b-91ae-364da2661108
Mailing List
Patch
http://www.openwall.com/lists/oss-security/2024/04/10/23af854a3a-2127-422b-91ae-364da2661108
Mailing List
Patch
http://www.openwall.com/lists/oss-security/2024/04/14/1af854a3a-2127-422b-91ae-364da2661108
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/15/2af854a3a-2127-422b-91ae-364da2661108
Mailing List
http://www.openwall.com/lists/oss-security/2024/04/17/5af854a3a-2127-422b-91ae-364da2661108
Exploit
Mailing List
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660af854a3a-2127-422b-91ae-364da2661108
Patch
https://github.com/Notselwyn/CVE-2024-1086af854a3a-2127-422b-91ae-364da2661108
Exploit
Third Party Advisory
https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660af854a3a-2127-422b-91ae-364da2661108
Patch
https://lists.debian.org/debian-lts-announce/2024/06/msg00016.htmlaf854a3a-2127-422b-91ae-364da2661108
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.htmlaf854a3a-2127-422b-91ae-364da2661108
Mailing List
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/af854a3a-2127-422b-91ae-364da2661108
Mailing List
https://news.ycombinator.com/item?id=39828424af854a3a-2127-422b-91ae-364da2661108
Issue Tracking
https://pwning.tech/nftables/af854a3a-2127-422b-91ae-364da2661108
Exploit
Technical Description
Third Party Advisory
https://security.netapp.com/advisory/ntap-20240614-0009/af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-1086134c704f-9b21-4f2e-91b3-4a467353bcc0
US Government Resource
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/10/22
Source: cve-coordination@google.com
Resource:
Mailing List
Patch
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/10/23
Source: cve-coordination@google.com
Resource:
Mailing List
Patch
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/14/1
Source: cve-coordination@google.com
Resource:
Exploit
Mailing List
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/15/2
Source: cve-coordination@google.com
Resource:
Mailing List
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/17/5
Source: cve-coordination@google.com
Resource:
Exploit
Mailing List
Hyperlink: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660
Source: cve-coordination@google.com
Resource:
Patch
Hyperlink: https://github.com/Notselwyn/CVE-2024-1086
Source: cve-coordination@google.com
Resource:
Exploit
Third Party Advisory
Hyperlink: https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660
Source: cve-coordination@google.com
Resource:
Patch
Hyperlink: https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
Source: cve-coordination@google.com
Resource:
Mailing List
Hyperlink: https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Source: cve-coordination@google.com
Resource:
Mailing List
Hyperlink: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/
Source: cve-coordination@google.com
Resource:
Mailing List
Hyperlink: https://news.ycombinator.com/item?id=39828424
Source: cve-coordination@google.com
Resource:
Issue Tracking
Hyperlink: https://pwning.tech/nftables/
Source: cve-coordination@google.com
Resource:
Exploit
Technical Description
Third Party Advisory
Hyperlink: https://security.netapp.com/advisory/ntap-20240614-0009/
Source: cve-coordination@google.com
Resource:
Third Party Advisory
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/10/22
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Patch
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/10/23
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Patch
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/14/1
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit
Mailing List
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/15/2
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Hyperlink: http://www.openwall.com/lists/oss-security/2024/04/17/5
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit
Mailing List
Hyperlink: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=f342de4e2f33e0e39165d8639387aa6c19dff660
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Hyperlink: https://github.com/Notselwyn/CVE-2024-1086
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit
Third Party Advisory
Hyperlink: https://kernel.dance/f342de4e2f33e0e39165d8639387aa6c19dff660
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Patch
Hyperlink: https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Hyperlink: https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Hyperlink: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/7LSPIOMIJYTLZB6QKPQVVAYSUETUWKPF/
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Mailing List
Hyperlink: https://news.ycombinator.com/item?id=39828424
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Issue Tracking
Hyperlink: https://pwning.tech/nftables/
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Exploit
Technical Description
Third Party Advisory
Hyperlink: https://security.netapp.com/advisory/ntap-20240614-0009/
Source: af854a3a-2127-422b-91ae-364da2661108
Resource:
Third Party Advisory
Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-1086
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Resource:
US Government Resource
Change History
0Changes found
Details not found