← back
CVE-2024-33040

Use After Free in Camera Driver

CVSS 6.7 MEDIUMEPSS 0.1%CWE-416
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.7EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
02 Dec 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Memory corruption while invoking redundant release command to release one buffer from user space as race condition can occur in kernel space between buffer release and buffer access.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H