VDB
DEBIAN-CVE-2024-1086
DEBIAN-CVE-2024-1086
PUBLISHED
CVSS 7.800000190734863 HIGH
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the nf_hook_slow() function can cause a double free vulnerability when NF_DROP is issued with a drop error which resembles NF_ACCEPT. We recommend upgrading past commit f342de4e2f33e0e39165d8639387aa6c19dff660.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | linux | 6.1.76-1, *, 0 |
| Debian:11 | linux | 5.10.158-1, 5.10.92-1, 5.10.92-1 |
| Debian:13 | linux | 0, 0 |
| Debian:14 | linux | 0, 0 |
Exploit Intelligence
- Luisbuilds-data/cve-2024-1086-writeup (github-poc-repo)
- Luisbuilds-data/cve-2024-1086-writeup (github-poc)
- b1nhack/CVE-2024-1086 (github-poc-repo)
- b1nhack/CVE-2024-1086 (github-poc)
- Educational, non-functional Linux kernel exploit template for CVE-2024-1086 — lab-only security research and teaching (use in controlled VMs only). (github-poc-repo)
- ndt2111200203/CVE-2024-1086 (github-poc-repo)
- Technical analysis and proof-of-concept for CVE-2024-1086, a Linux kernel nf_tables use-after-free vulnerability leading to local privilege escalation. Includes vulnerability breakdown, affected versions, exploitation methodology, and mitigation guidance for research and educational purposes. (github-poc-repo)
- vettrivel007/CVE-2024-1086 (github-poc-repo)
- ClaraSto/CVE-2024-1086_Ausarbeitung (github-poc)
- vettrivel007/CVE-2024-1086 (github-poc)
…and 25 more exploits
Timeline
- Jan 31, 2024 CVE Published
- Apr 28, 2026 CVE Updated