← back
CVE-2014-0038

CVE-2014-0038

55Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 35%
from disclosure to weapon0 days
Published on NVDFeb 6
1st PoCJan 31
metasploitFeb 2
exploitation probability
35%top 2% of all CVEs
observed exploitation
nono source reports it
9 public exploit(s)
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted timeout pointer parameter.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.