1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Linux Kernel Out-of-Bounds Write Vulnerability

Known Exploited Vulnerabilities CVE-2024-53104

Linux kernel contains an out-of-bounds write vulnerability in the uvc_parse_streaming component of the USB Video Class (UVC) driver that could allow for physical escalation of privilege.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2024-53104 Linux Kernel Out-of-Bounds Write Vulnerability exploitation_technique T1091 Replication Through Removable Media
Comments
By creating or modifying a USB video device, an attacker can send an undefined video frame to trigger an out-of-bounds write, leading to privilege escalation and potential arbitrary code execution.
References
  1. https://www.ox.security/blog/cve-2024-53104-are-you-really-at-risk/
CVE-2024-53104 Linux Kernel Out-of-Bounds Write Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
By creating or modifying a USB video device, an attacker can send an undefined video frame to trigger an out-of-bounds write, leading to privilege escalation and potential arbitrary code execution.
References
  1. https://www.ox.security/blog/cve-2024-53104-are-you-really-at-risk/
CVE-2024-53104 Linux Kernel Out-of-Bounds Write Vulnerability primary_impact T1059 Command and Scripting Interpreter
Comments
By creating or modifying a USB video device, an attacker can send an undefined video frame to trigger an out-of-bounds write, leading to privilege escalation and potential arbitrary code execution.
References
  1. https://www.ox.security/blog/cve-2024-53104-are-you-really-at-risk/