VulnerableCode Vulnerability Details

Search for vulnerabilities

Vulnerability details: VCID-6uk8-2jnu-aaam

Essentials
Severities (100)
References (15)
Severity details (14)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-6uk8-2jnu-aaam
Aliases	CVE-2024-4741
Summary	Issue summary: Calling the OpenSSL API function SSL_free_buffers may cause memory to be accessed that was previously freed in some situations Impact summary: A use after free can have a range of potential consequences such as the corruption of valid data, crashes or execution of arbitrary code. However, only applications that directly call the SSL_free_buffers function are affected by this issue. Applications that do not call this function are not vulnerable. Our investigations indicate that this function is rarely used by applications. The SSL_free_buffers function is used to free the internal OpenSSL buffer used when processing an incoming record from the network. The call is only expected to succeed if the buffer is not currently in use. However, two scenarios have been identified where the buffer is freed even when still in use. The first scenario occurs where a record header has been received from the network and processed by OpenSSL, but the full record body has not yet arrived. In this case calling SSL_free_buffers will succeed even though a record has only been partially processed and the buffer is still in use. The second scenario occurs where a full record containing application data has been received and processed by OpenSSL but the application has only read part of this data. Again a call to SSL_free_buffers will succeed even though the buffer is still in use. While these scenarios could occur accidentally during normal operation a malicious attacker could attempt to engineer a stituation where this occurs. We are not aware of this issue being actively exploited. The FIPS modules in 3.3, 3.2, 3.1 and 3.0 are not affected by this issue.
Status	Published
Exploitability	0.5
Weighted Severity	6.8
Risk	3.4
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-416

Use After Free

System	Score	Found at
cvssv3	5.6	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4741.json
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00075	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00075	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00082	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00092	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00106	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00106	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.0013	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00149	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00167	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
epss	0.00276	https://api.first.org/data/v1/epss?cve=CVE-2024-4741
cvssv3.1	8.1	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1	7.5	https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177
ssvc	Track	https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177
cvssv3.1	7.5	https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d
ssvc	Track	https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d
cvssv3.1	7.5	https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac
ssvc	Track	https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac
cvssv3.1	7.5	https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8
ssvc	Track	https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8
cvssv3.1	7.5	https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4
ssvc	Track	https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4
cvssv3.1	7.5	https://www.openssl.org/news/secadv/20240528.txt
ssvc	Track	https://www.openssl.org/news/secadv/20240528.txt

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4741.json
		https://api.first.org/data/v1/epss?cve=CVE-2024-4741
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4741
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1072113		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072113
20240528.txt		https://www.openssl.org/news/secadv/20240528.txt
2283757		https://bugzilla.redhat.com/show_bug.cgi?id=2283757
704f725b96aa373ee45ecfb23f6abfe8be8d9177		https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177
b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d		https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d
c88c3de51020c37e8706bf7a682a162593053aac		https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac
CVE-2024-4741		https://nvd.nist.gov/vuln/detail/CVE-2024-4741
e5093133c35ca82874ad83697af76f4b0f7e3bd8		https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8
f7a045f3143fc6da2ee66bf52d8df04829590dd4		https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4
RHSA-2024:9333		https://access.redhat.com/errata/RHSA-2024:9333
USN-6937-1		https://usn.ubuntu.com/6937-1/

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4741.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://github.com/openssl/openssl/commit/704f725b96aa373ee45ecfb23f6abfe8be8d9177

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://github.com/openssl/openssl/commit/b3f0eb0a295f58f16ba43ba99dad70d4ee5c437d

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://github.com/openssl/openssl/commit/c88c3de51020c37e8706bf7a682a162593053aac

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://github.com/openssl/openssl/commit/e5093133c35ca82874ad83697af76f4b0f7e3bd8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://github.openssl.org/openssl/extended-releases/commit/f7a045f3143fc6da2ee66bf52d8df04829590dd4

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://www.openssl.org/news/secadv/20240528.txt

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-11-13T14:45:07Z/ Found at https://www.openssl.org/news/secadv/20240528.txt

Exploit Prediction Scoring System (EPSS)

Percentile	0.11518
EPSS Score	0.00044
Published At	Nov. 18, 2024, midnight

Date	Actor	Action	Source	VulnerableCode Version
2024-05-28T20:48:02.431642+00:00	Debian Importer	Import	https://security-tracker.debian.org/tracker/data/json	34.0.0rc4