SARA / Free Tools / CVE / CVE-2024-38572

CVE-2024-38572 — In the Linux kernel, the following vulnerability has been resolved:

In the Linux kernel, the following vulnerability has been resolved:

CVSS

— —

EPSS

4.00% (top 89.80%)

CWE

—

Published

2024-06-19T13:35:37.666Z

Last modified

2025-05-04T09:14:23.115Z

CVSS vector

—

01What is this vulnerability?

In the Linux kernel, the following vulnerability has been resolved:

Vendor	Product	Versions
Linux	Linux	d889913205cf7ebda905b1e62c5867ed4e39f6c2, d889913205cf7ebda905b1e62c5867ed4e39f6c2, d889913205cf7ebda905b1e62c5867ed4e39f6c2, d889913205cf7ebda905b1e62c5867ed4e39f6c2
Linux	Linux	6.3, 0, 6.6.33, 6.8.12, 6.9.3, 6.10

Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.

Patch to a fixed version listed in the vendor advisory (see references below).
Mitigate with WAF rules, network egress filters, or feature flags where the patch is not yet available.
Hunt historical logs for exploitation indicators — see Detection signatures below.

For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.

Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:

No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.

git.kernel.org — https://git.kernel.org/stable/c/95575de7dede7b1ed3b9718dab9dda97914ea775
git.kernel.org — https://git.kernel.org/stable/c/b48d40f5840c505b7af700594aa8379eec28e925
git.kernel.org — https://git.kernel.org/stable/c/a1abdb63628b04855a929850772de97435ed1555
git.kernel.org — https://git.kernel.org/stable/c/e1bdff48a1bb4a4ac660c19c55a820968c48b3f2

Want this in your SOAR or SIEM?
SARA's API returns EPSS, CVSS, KEV, and an analyst-grade summary in one call.