CVE-2024-24859 is a medium-severity vulnerability affecting the Linux kernel. This vulnerability allows a race condition in the Bluetooth functionality, specifically within the sniff_{min,max}_interval_set() function. This flaw may lead to exceptions during Bluetooth sniffing operations, potentially causing a denial of service.
The vulnerability has a CVSS score of 4.6, indicating a medium level of severity. It is classified under CWE-362, which highlights a race condition issue. The risk to organizations includes interruptions in Bluetooth functionalities, affecting users or services dependent on this feature.
Currently, there are no known exploits in the wild, but organizations should remain vigilant. The urgency for defenders is moderate; they should address this vulnerability in their patch cycle to prevent any potential disruption.
Organizations are advised to check their Linux kernel versions against the affected ranges to ensure they are patched appropriately.
Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.
.webp)