How severe is CVE-2024-38161?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.8 out of 10.

What type of vulnerability is CVE-2024-38161?

This is classified as CWE-122, which is a common weakness in software security.

CVE-2024-38161

MEDIUM Year: 2024

CVSS v3 Score

6.8

Medium

Weakness Type

CWE-122

View all →

Vulnerability Description

Windows Mobile Broadband Driver Remote Code Execution Vulnerability

CVE-2021-31986

MEDIUM

CVSS:6.8(Medium)

User controlled parameters related to SMTP notifications are not correctly validated. This can lead to a buffer overflow resulting in crashes and data leakage.

CWE-1222021

The RNDIS USB device class includes a buffer overflow vulnerability. Zephyr versions >= v2.6.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-...

CWE-1222021