CVE-2024-2313
LOWDescription
If kernel headers need to be extracted, bpftrace will attempt to load them from a temporary directory. An unprivileged attacker could use this to force bcc to load compromised linux headers. Linux distributions which provide kernel headers by default are not affected by default.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| bpftrace | bpftrace |
| linux | linux_kernel |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-2313? +
How severe is CVE-2024-2313? +
What products are affected by CVE-2024-2313? +
How do I check if I'm vulnerable to CVE-2024-2313? +
Related Vulnerabilities
Products for macOS enables a user logged on to the system to perform a denial-of-service attack, which could be misused …
Insecure creation of temporary files allows local users on systems with non-default configurations to cause denial of service or set …
An insecure temporary file creation vulnerability exists in the AutoExtract component of Robocode version 1.9.3.6. The createTempFile method fails to …
The llama_index library version 0.12.33 sets the NLTK data directory to a subdirectory of the codebase by default, which is …
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 and Application versions prior to 25.1.1413 (Windows client deployments) …
Dell Alienware Command Center 6.x (AWCC), versions prior to 6.10.15.0, contains an Insecure Temporary File vulnerability. A low privileged attacker …