CISA added a Linux privilege escalation vulnerability that works on kernel versions between 5.14 and 6.6.14 to its Known Exploited Vulnerabilities (KEV) catalog. Learn more about the threat and what it means for Linux users.
Anuj Mudaliar Assistant Editor - Tech, SWZD
(Credits: Shutterstock.com)
- CISA has added a new security flaw affecting the Linux kernel to its Known Exploited Vulnerabilities (KEV) catalog.
- The vulnerability, CVE-2024-1086, allows attackers to elevate their privileges, even allowing the execution of random code.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a new security vulnerability to its KEV catalog that impacts Linux kernel versions between 5.14 and 6.6.14. Designated CVE-2024-1086, the issue is mentioned as a CVSS score: 7.8 high severity bug that exploits the netfilter component to allow a local attacker to escalate privileges up to the root level, potentially enabling the execution of arbitrary code.
The netfilter component is a Linux kernel framework that enables network operations such as port translation, packet filtering, and network address translation. CVE-2024-1086 is described as a use-after-free bug, which means that it is a flaw associated with the incorrect use of dynamic memory in the process of program operations.
See more: U.S. Government Sanctions Cybercrime Network Using Free VPN Services for Proxy Botnet
While a patch for the vulnerability has been available since January 2024, it has only now been designated as an actively exploited bug. However, while federal agencies are recommended to apply the patches by the 20th of June, 2024, CISA has not provided any details regarding the nature of the attacks exploiting this vulnerability.
CISA added another vulnerability, CVE-2024-24919, which impacts Check Point network gateway security products, to its KEV catalog. This vulnerability allows attackers to read data on gateways that are mobile access enabled or have a remote access VPN. Threat actors have reportedly used it to breach corporate networks and access remote firewalls.
Considering that the Linux kernel bug affects distributions such as Ubuntu, Debian, Fedora, and Red Hat, the alert from CISA highlights the need for prompt patching efforts for individuals and organizations running Linux systems.
LATEST NEWS STORIES
Assistant Editor - Tech, SWZD
Anuj Mudaliar is a content development professional with a keen interest in emerging technologies, particularly advances in AI. As a tech editor for Spiceworks, Anuj covers many topics, including cloud, cybersecurity, emerging tech innovation, AI, and hardware. When not at work, he spends his time outdoors - trekking, camping, and stargazing. He is also interested in cooking and experiencing cuisine from around the world.