CVE-2024-2201

Published: Dic 19, 2024 Last Modified: Gen 09, 2025
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 4,7
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
Attack Vector: local
Attack Complexity: high
Privileges Required: low
User Interaction: none
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none

Description

AI Translation Available

A cross-privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recent Fine(IBT), and to leak arbitrary Linux kernel memory on Intel systems.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0003
Percentile
0,1th
Updated

EPSS Score Trend (Last 90 Days)

https://github.com/vusec/inspectre-gadget?tab=readme-ov-file
https://github.com/vusec/inspectre-gadget?tab=readme-ov-file
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/[email protected]
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/[email protected]
https://lists.fedoraproject.org/archives/list/package-annou…
https://lists.fedoraproject.org/archives/list/[email protected]
https://www.intel.com/content/www/us/en/developer/articles/…
https://www.intel.com/content/www/us/en/developer/articles/technical/software-s…
https://www.kb.cert.org/vuls/id/155143
https://www.kb.cert.org/vuls/id/155143
http://www.openwall.com/lists/oss-security/2024/04/09/15
http://www.openwall.com/lists/oss-security/2024/04/09/15
http://www.openwall.com/lists/oss-security/2024/05/07/7
http://www.openwall.com/lists/oss-security/2024/05/07/7
http://xenbits.xen.org/xsa/advisory-456.html
http://xenbits.xen.org/xsa/advisory-456.html