VDB
CVE-2024-11586
CVE-2024-11586
PUBLISHED
CVSS 4 MEDIUM
Ubuntu's implementation of pulseaudio can be crashed by a malicious program if a bluetooth headset is connected.
EPSS 0.01% · 2.3th percentile
Risk Scores
CVSS v3.1
4
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.01%
2.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canonical Ltd. | Ubuntu's pulseaudio | 0, 0 |
| pulseaudio | pulseaudio |
Timeline
- Nov 23, 2024 EPSS Score
- Nov 23, 2024 CVE Published
- Nov 23, 2024 PoC Published
- Nov 25, 2024 CVE Updated
- Dec 11, 2024 EPSS Score
- Dec 29, 2024 EPSS Score
- Jan 1, 2025 Coalition ESS Score
- Jan 15, 2025 EPSS Score
- Feb 1, 2025 EPSS Score
- Feb 18, 2025 EPSS Score
- Mar 8, 2025 EPSS Score
- Mar 25, 2025 EPSS Score