6.2
CVE-2024-35215
- EPSS 0.06%
- Veröffentlicht 08.10.2024 18:15:05
- Zuletzt bearbeitet 01.12.2025 17:56:42
- Quelle secure@blackberry.com
- CVE-Watchlists
- Unerledigt
NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the Networking Stack process.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Blackberry ≫ Qnx Software Development Platform Version >= 7.0 < 8.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.182 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| secure@blackberry.com | 6.2 | 2.5 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.