VulnerableCode Vulnerability Details

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-es9x-2mxv-k3gw

Essentials
Severities (27)
References (13)
Severity details (10)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-es9x-2mxv-k3gw
Aliases	CVE-2024-46674
Summary	kernel: usb: dwc3: st: fix probed platform device ref count on probe error path
Status	Published
Exploitability	0.5
Weighted Severity	7.0
Risk	3.5
Affected and Fixed Packages	Package Details

Weaknesses (1)

CWE-416

Use After Free

System	Score	Found at
cvssv3	7.8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46674.json
epss	0.00014	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00014	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00014	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
epss	0.00015	https://api.first.org/data/v1/epss?cve=CVE-2024-46674
cvssv3.1	7.8	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
ssvc	Track	https://git.kernel.org/stable/c/060f41243ad7f6f5249fa7290dda0c01f723d12d
ssvc	Track	https://git.kernel.org/stable/c/1de989668708ce5875efc9d669d227212aeb9a90
ssvc	Track	https://git.kernel.org/stable/c/4c6735299540f3c82a5033d35be76a5c42e0fb18
ssvc	Track	https://git.kernel.org/stable/c/6aee4c5635d81f4809c3b9f0c198a65adfbb2ada
ssvc	Track	https://git.kernel.org/stable/c/b0979a885b9d4df2a25b88e9d444ccaa5f9f495c
ssvc	Track	https://git.kernel.org/stable/c/ddfcfeba891064b88bb844208b43bef2ef970f0c
ssvc	Track	https://git.kernel.org/stable/c/e1e5e8ea2731150d5ba7c707f9e02fafebcfeb49
ssvc	Track	https://git.kernel.org/stable/c/f3498650df0805c75b4e1c94d07423c46cbf4ce1

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46674.json
		https://api.first.org/data/v1/epss?cve=CVE-2024-46674
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46674
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
060f41243ad7f6f5249fa7290dda0c01f723d12d		https://git.kernel.org/stable/c/060f41243ad7f6f5249fa7290dda0c01f723d12d
1de989668708ce5875efc9d669d227212aeb9a90		https://git.kernel.org/stable/c/1de989668708ce5875efc9d669d227212aeb9a90
2312062		https://bugzilla.redhat.com/show_bug.cgi?id=2312062
4c6735299540f3c82a5033d35be76a5c42e0fb18		https://git.kernel.org/stable/c/4c6735299540f3c82a5033d35be76a5c42e0fb18
6aee4c5635d81f4809c3b9f0c198a65adfbb2ada		https://git.kernel.org/stable/c/6aee4c5635d81f4809c3b9f0c198a65adfbb2ada
b0979a885b9d4df2a25b88e9d444ccaa5f9f495c		https://git.kernel.org/stable/c/b0979a885b9d4df2a25b88e9d444ccaa5f9f495c
ddfcfeba891064b88bb844208b43bef2ef970f0c		https://git.kernel.org/stable/c/ddfcfeba891064b88bb844208b43bef2ef970f0c
e1e5e8ea2731150d5ba7c707f9e02fafebcfeb49		https://git.kernel.org/stable/c/e1e5e8ea2731150d5ba7c707f9e02fafebcfeb49
f3498650df0805c75b4e1c94d07423c46cbf4ce1		https://git.kernel.org/stable/c/f3498650df0805c75b4e1c94d07423c46cbf4ce1

No exploits are available.

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46674.json

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/060f41243ad7f6f5249fa7290dda0c01f723d12d

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/1de989668708ce5875efc9d669d227212aeb9a90

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/4c6735299540f3c82a5033d35be76a5c42e0fb18

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/6aee4c5635d81f4809c3b9f0c198a65adfbb2ada

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/b0979a885b9d4df2a25b88e9d444ccaa5f9f495c

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/ddfcfeba891064b88bb844208b43bef2ef970f0c

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/e1e5e8ea2731150d5ba7c707f9e02fafebcfeb49

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-29T15:44:46Z/ Found at https://git.kernel.org/stable/c/f3498650df0805c75b4e1c94d07423c46cbf4ce1

Exploit Prediction Scoring System (EPSS)

Percentile	0.02425
EPSS Score	0.00014
Published At	May 5, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:45:12.692614+00:00	RedHat Importer	Import	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46674.json	38.0.0