VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-9r99-xxqs-c7gq

Essentials
Severities (12)
References (20)
Severity details (8)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-9r99-xxqs-c7gq
Aliases	CVE-2024-50166
Summary	kernel: fsl/fman: Fix refcount handling of fman-related devices
Status	Published
Exploitability	0.5
Weighted Severity	4.4
Risk	2.2
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-401

Missing Release of Memory after Effective Lifetime

System	Score	Found at
cvssv3	4.4	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50166.json
epss	0.00029	https://api.first.org/data/v1/epss?cve=CVE-2024-50166
epss	0.00029	https://api.first.org/data/v1/epss?cve=CVE-2024-50166
epss	0.00029	https://api.first.org/data/v1/epss?cve=CVE-2024-50166
epss	0.00029	https://api.first.org/data/v1/epss?cve=CVE-2024-50166
cvssv3.1	5.5	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1	5.5	https://git.kernel.org/stable/c/1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1
ssvc	Track	https://git.kernel.org/stable/c/1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1
cvssv3.1	5.5	https://git.kernel.org/stable/c/3c2a3619d565fe16bf59b0a047bab103a2ee4490
ssvc	Track	https://git.kernel.org/stable/c/3c2a3619d565fe16bf59b0a047bab103a2ee4490
cvssv3.1	5.5	https://git.kernel.org/stable/c/5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b
ssvc	Track	https://git.kernel.org/stable/c/5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50166.json
		https://api.first.org/data/v1/epss?cve=CVE-2024-50166
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-50166
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1		https://git.kernel.org/stable/c/1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1
2324426		https://bugzilla.redhat.com/show_bug.cgi?id=2324426
3c2a3619d565fe16bf59b0a047bab103a2ee4490		https://git.kernel.org/stable/c/3c2a3619d565fe16bf59b0a047bab103a2ee4490
5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b		https://git.kernel.org/stable/c/5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b
USN-7276-1		https://usn.ubuntu.com/7276-1/
USN-7277-1		https://usn.ubuntu.com/7277-1/
USN-7310-1		https://usn.ubuntu.com/7310-1/
USN-7449-1		https://usn.ubuntu.com/7449-1/
USN-7449-2		https://usn.ubuntu.com/7449-2/
USN-7450-1		https://usn.ubuntu.com/7450-1/
USN-7451-1		https://usn.ubuntu.com/7451-1/
USN-7452-1		https://usn.ubuntu.com/7452-1/
USN-7453-1		https://usn.ubuntu.com/7453-1/
USN-7468-1		https://usn.ubuntu.com/7468-1/
USN-7523-1		https://usn.ubuntu.com/7523-1/
USN-7524-1		https://usn.ubuntu.com/7524-1/

No exploits are available.

Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50166.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://git.kernel.org/stable/c/1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T20:19:58Z/ Found at https://git.kernel.org/stable/c/1dec67e0d9fbb087c2ab17bf1bd17208231c3bb1

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://git.kernel.org/stable/c/3c2a3619d565fe16bf59b0a047bab103a2ee4490

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T20:19:58Z/ Found at https://git.kernel.org/stable/c/3c2a3619d565fe16bf59b0a047bab103a2ee4490

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Found at https://git.kernel.org/stable/c/5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T20:19:58Z/ Found at https://git.kernel.org/stable/c/5ed4334fc9512f934fe2ae9c4cf7f8142e451b8b

Exploit Prediction Scoring System (EPSS)

Percentile	0.08854
EPSS Score	0.00029
Published At	June 5, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-04T16:50:51.179994+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-50166.json	38.6.0