CVE-2024-44098 - CERT CVE
ID CVE-2024-44098
Sažetak In lwis_device_event_states_clear_locked of lwis_event.c, there is a possible privilege escalation due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Reference
CVSS
Base: 7.4
Impact: 5.9
Exploitability:1.4
Pristup
VektorSloženostAutentikacija
LOCAL HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
HIGH HIGH HIGH
CVSS vektor CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Zadnje važnije ažuriranje 25-10-2024 - 17:35
Objavljeno 25-10-2024 - 11:15