SARA / Free Tools / CVE / CVE-2024-35839

CVE-2024-35839 — In the Linux kernel, the following vulnerability has been resolved:

In the Linux kernel, the following vulnerability has been resolved:

CVSS

— —

EPSS

1.00% (top 97.10%)

CWE

—

Published

2024-05-17T14:27:30.524Z

Last modified

2025-05-04T09:06:34.423Z

CVSS vector

—

01What is this vulnerability?

In the Linux kernel, the following vulnerability has been resolved:

Vendor	Product	Versions
Linux	Linux	c4e70a87d975d1f561a00abfe2d3cefa2a486c95, c4e70a87d975d1f561a00abfe2d3cefa2a486c95, c4e70a87d975d1f561a00abfe2d3cefa2a486c95, c4e70a87d975d1f561a00abfe2d3cefa2a486c95
Linux	Linux	4.2, 0, 6.1.75, 6.6.14, 6.7.2, 6.8

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

Patch to a fixed version listed in the vendor advisory (see references below).
Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
Hunt historical logs for exploitation indicators — see Detection signatures below.

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

git.kernel.org — https://git.kernel.org/stable/c/7ae19ee81ca56b13c50a78de6c47d5b8fdc9d97b
git.kernel.org — https://git.kernel.org/stable/c/9325e3188a9cf3f69fc6f32af59844bbc5b90547
git.kernel.org — https://git.kernel.org/stable/c/544add1f1cfb78c3dfa3e6edcf4668f6be5e730c
git.kernel.org — https://git.kernel.org/stable/c/9874808878d9eed407e3977fd11fee49de1e1d86

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.