CVE-2024-9632

UNKNOWN

Published 2024-10-30T07:42:35.320Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-9632. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

7.8

/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01

0.000

probability

of exploitation in the wild

There is a 0.0% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25

Exploit Probability

Percentile: 0.124

Higher than 12.4% of all CVEs

Attack Vector Metrics

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Impact Metrics

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Description

A flaw was found in the X.org server. Due to improperly tracked allocation size in _XkbSetCompatMap, a local attacker may be able to trigger a buffer overflow condition via a specially crafted payload, leading to denial of service or local privilege escalation in distributions where the X.org server is run with root privileges.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Unknown Vendor

Unknown Product

Affected Versions:

1.1.1

Red Hat

Red Hat Enterprise Linux 10

Affected Versions:

0:24.1.5-3.el10_0

Red Hat

Red Hat Enterprise Linux 7 Extended Lifecycle Support

Affected Versions:

0:1.8.0-34.el7_9

Red Hat

Red Hat Enterprise Linux 8

Affected Versions:

0:1.20.11-25.el8_10

Red Hat

Red Hat Enterprise Linux 8

Affected Versions:

0:21.1.3-17.el8_10

Red Hat

Red Hat Enterprise Linux 8

Affected Versions:

0:1.13.1-14.el8_10

Red Hat

Red Hat Enterprise Linux 8.2 Advanced Update Support

Affected Versions:

0:1.9.0-15.el8_2.12

Red Hat

Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support

Affected Versions:

0:1.11.0-8.el8_4.11

Red Hat

Red Hat Enterprise Linux 8.4 Telecommunications Update Service

Affected Versions:

0:1.11.0-8.el8_4.11

Red Hat

Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions

Affected Versions:

0:1.11.0-8.el8_4.11

Red Hat

Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support

Affected Versions:

0:1.12.0-6.el8_6.12

Red Hat

Red Hat Enterprise Linux 8.6 Telecommunications Update Service

Affected Versions:

0:1.12.0-6.el8_6.12

Red Hat

Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions

Affected Versions:

0:1.12.0-6.el8_6.12

Red Hat

Red Hat Enterprise Linux 8.8 Extended Update Support

Affected Versions:

0:1.12.0-15.el8_8.11

Red Hat

Red Hat Enterprise Linux 9

Affected Versions:

0:1.14.1-1.el9_5

Red Hat

Red Hat Enterprise Linux 9

Affected Versions:

0:1.20.11-28.el9_6

Red Hat

Red Hat Enterprise Linux 9

Affected Versions:

0:23.2.7-3.el9_6

Red Hat

Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions

Affected Versions:

0:1.11.0-22.el9_0.12

Red Hat

Red Hat Enterprise Linux 9.2 Extended Update Support

Affected Versions:

0:1.12.0-14.el9_2.9

Red Hat

Red Hat Enterprise Linux 9.4 Extended Update Support

Affected Versions:

0:1.13.1-8.el9_4.4

Red Hat

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-cjcf-6ch6-g3rx

Advisory Details

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-9632

WEB https://lists.debian.org/debian-lts-announce/2024/10/msg00031.html

WEB https://bugzilla.redhat.com/show_bug.cgi?id=2317233

WEB https://access.redhat.com/security/cve/CVE-2024-9632

WEB https://access.redhat.com/errata/RHSA-2025:7458

WEB https://access.redhat.com/errata/RHSA-2025:7165

WEB https://access.redhat.com/errata/RHSA-2025:7163

WEB https://access.redhat.com/errata/RHSA-2024:9901

WEB https://access.redhat.com/errata/RHSA-2024:9820

WEB https://access.redhat.com/errata/RHSA-2024:9819

WEB https://access.redhat.com/errata/RHSA-2024:9818

WEB https://access.redhat.com/errata/RHSA-2024:9816

WEB https://access.redhat.com/errata/RHSA-2024:9690

WEB https://access.redhat.com/errata/RHSA-2024:9601

WEB https://access.redhat.com/errata/RHSA-2024:9579

WEB https://access.redhat.com/errata/RHSA-2024:9540

WEB https://access.redhat.com/errata/RHSA-2024:8798

WEB https://access.redhat.com/errata/RHSA-2024:10090

WEB http://seclists.org/fulldisclosure/2024/Oct/20

WEB http://www.openwall.com/lists/oss-security/2024/10/29/2

Advisory provided by GitHub Security Advisory Database. Published: October 30, 2024, Modified: May 13, 2025

References

https://access.redhat.com/errata/RHSA-2024:10090

https://access.redhat.com/errata/RHSA-2024:8798

https://access.redhat.com/errata/RHSA-2024:9540

https://access.redhat.com/errata/RHSA-2024:9579

https://access.redhat.com/errata/RHSA-2024:9601

https://access.redhat.com/errata/RHSA-2024:9690

https://access.redhat.com/errata/RHSA-2024:9816

https://access.redhat.com/errata/RHSA-2024:9818

https://access.redhat.com/errata/RHSA-2024:9819

https://access.redhat.com/errata/RHSA-2024:9820

https://access.redhat.com/errata/RHSA-2024:9901

https://access.redhat.com/errata/RHSA-2025:7163

https://access.redhat.com/errata/RHSA-2025:7165

https://access.redhat.com/errata/RHSA-2025:7458

https://access.redhat.com/security/cve/CVE-2024-9632

https://bugzilla.redhat.com/show_bug.cgi?id=2317233

Published: 2024-10-30T07:42:35.320Z

Last Modified: 2025-05-13T20:01:52.897Z

Copied to clipboard!

CVE-2024-9632

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Unknown Product

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!