CVE-2024-36886 — In the Linux kernel, the following vulnerability has been resolved:
In the Linux kernel, the following vulnerability has been resolved:
Published
2024-05-30T15:28:55.059Z
Last modified
2025-05-04T09:11:25.063Z
01What is this vulnerability?
In the Linux kernel, the following vulnerability has been resolved:
02Affected products
| Vendor | Product | Versions |
|---|
| Linux | Linux | 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89, 1149557d64c97dc9adf3103347a1c0e8c06d3b89 |
| Linux | Linux | 4.1, 0, 4.19.314, 5.4.276, 5.10.217, 5.15.159, 6.1.91, 6.6.31, 6.8.10, 6.9 |
03Active exploitation status
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
04Recommended remediation
- Patch to a fixed version listed in the vendor advisory (see references below).
- Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
- Hunt historical logs for exploitation indicators — see Detection signatures below.
05Technical details
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
06Detection signatures
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
Open in Sigma generator →
07Related CVEs
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.
08Timeline
- Published: 2024-05-30T15:28:55.059Z
- Last modified: 2025-05-04T09:11:25.063Z
09References
- git.kernel.org — https://git.kernel.org/stable/c/e19ec8ab0e25bc4803d7cc91c84e84532e2781bd
- git.kernel.org — https://git.kernel.org/stable/c/93bc2d6d16f2c3178736ba6b845b30475856dc40
- git.kernel.org — https://git.kernel.org/stable/c/367766ff9e407f8a68409b7ce4dc4d5a72afeab1
- git.kernel.org — https://git.kernel.org/stable/c/66116556076f0b96bc1aa9844008c743c8c67684
- git.kernel.org — https://git.kernel.org/stable/c/21ea04aad8a0839b4ec27ef1691ca480620e8e14
- git.kernel.org — https://git.kernel.org/stable/c/ffd4917c1edb3c3ff334fce3704fbe9c39f35682
- git.kernel.org — https://git.kernel.org/stable/c/a0fbb26f8247e326a320e2cb4395bfb234332c90
- git.kernel.org — https://git.kernel.org/stable/c/080cbb890286cd794f1ee788bbc5463e2deb7c2b
Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.
Read the API reference →