CVE-2024-25744

high

Description

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

References

https://ahoi-attacks.github.io/

https://security.netapp.com/advisory/ntap-20241115-0006/

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=b82a8dbd3d2f4563156f7150c6f2ecab6e960b30

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6.7

Details

Source: Mitre, NVD

Published: 2024-02-12

Updated: 2025-05-07

Named Vulnerability: Heckler

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00054

Detections

Analytics