SARA / Free Tools / CVE / CVE-2024-36000

CVE-2024-36000 — In the Linux kernel, the following vulnerability has been resolved:

In the Linux kernel, the following vulnerability has been resolved:

CVSS

— —

EPSS

1.00% (top 30.00%)

CWE

—

Published

2024-05-20T09:48:02.318Z

Last modified

2025-05-04T12:56:11.705Z

CVSS vector

—

01What is this vulnerability?

In the Linux kernel, the following vulnerability has been resolved:

Vendor	Product	Versions
Linux	Linux	79aa925bf239c234be8586780e482872dc4690dd, 79aa925bf239c234be8586780e482872dc4690dd, 79aa925bf239c234be8586780e482872dc4690dd, 79aa925bf239c234be8586780e482872dc4690dd, f87004c0b2bdf0f1066b88795d8e6c1dfad6cea0
Linux	Linux	5.10, 0, 6.1.91, 6.6.30, 6.8.9, 6.9

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

Patch to a fixed version listed in the vendor advisory (see references below).
Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
Hunt historical logs for exploitation indicators — see Detection signatures below.

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

git.kernel.org — https://git.kernel.org/stable/c/4c806333efea1000a2a9620926f560ad2e1ca7cc
git.kernel.org — https://git.kernel.org/stable/c/f6c5d21db16a0910152ec8aa9d5a7aed72694505
git.kernel.org — https://git.kernel.org/stable/c/538faabf31e9c53d8c870d114846fda958a0de10
git.kernel.org — https://git.kernel.org/stable/c/b76b46902c2d0395488c8412e1116c2486cdfcb2

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.