CVE-2024-34748 - DevmemX Use-After-Free Local Kernel EoP
cve cybersecurity securityCVE ID : CVE-2024-34748
Published : Jan. 28, 2025, 8:15 p.m. | 11 hours, 44 minutes ago
Description : In _DevmemXReservationPageAddress of devicemem_server.c, there is a possible use-after-free due to improper casting. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.
Severity: 8.4 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…
Go to Source