Search for vulnerabilities
Vulnerability details: VCID-vv6m-c181-aaaj
Vulnerability ID VCID-vv6m-c181-aaaj
Aliases CVE-2024-33601
Summary glibc: netgroup cache may terminate daemon on memory allocation failure
Status Published
Exploitability 0.5
Weighted Severity 6.6
Risk 3.3
Affected and Fixed Packages Package Details
Weaknesses (2)
System Score Found at
cvssv3 4.0 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33601.json
epss 0.00038 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00041 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00045 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00046 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00047 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00066 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00085 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00085 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00085 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.0009 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
epss 0.00228 https://api.first.org/data/v1/epss?cve=CVE-2024-33601
cvssv3.1 6.2 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3.1 7.3 https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
cvssv3.1 7.3 https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
ssvc Track https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
ssvc Track https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
cvssv3.1 7.3 https://security.netapp.com/advisory/ntap-20240524-0014/
cvssv3.1 7.3 https://security.netapp.com/advisory/ntap-20240524-0014/
ssvc Track https://security.netapp.com/advisory/ntap-20240524-0014/
ssvc Track https://security.netapp.com/advisory/ntap-20240524-0014/
cvssv3.1 7.3 https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
cvssv3.1 7.3 https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
ssvc Track https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
ssvc Track https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
cvssv3.1 7.3 http://www.openwall.com/lists/oss-security/2024/07/22/5
ssvc Track http://www.openwall.com/lists/oss-security/2024/07/22/5
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33601.json
https://api.first.org/data/v1/epss?cve=CVE-2024-33601
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33599
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33600
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33601
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33602
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
https://security.netapp.com/advisory/ntap-20240524-0014/
https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
http://www.openwall.com/lists/oss-security/2024/07/22/5
2277205 https://bugzilla.redhat.com/show_bug.cgi?id=2277205
cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:o:netapp:h610c_firmware:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:netapp:h610c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:*
CVE-2024-33601 https://nvd.nist.gov/vuln/detail/CVE-2024-33601
GLSA-202405-17 https://security.gentoo.org/glsa/202405-17
RHSA-2024:2799 https://access.redhat.com/errata/RHSA-2024:2799
RHSA-2024:3309 https://access.redhat.com/errata/RHSA-2024:3309
RHSA-2024:3312 https://access.redhat.com/errata/RHSA-2024:3312
RHSA-2024:3339 https://access.redhat.com/errata/RHSA-2024:3339
RHSA-2024:3344 https://access.redhat.com/errata/RHSA-2024:3344
RHSA-2024:3411 https://access.redhat.com/errata/RHSA-2024:3411
RHSA-2024:3423 https://access.redhat.com/errata/RHSA-2024:3423
RHSA-2024:3464 https://access.redhat.com/errata/RHSA-2024:3464
RHSA-2024:3588 https://access.redhat.com/errata/RHSA-2024:3588
RHSA-2024:4126 https://access.redhat.com/errata/RHSA-2024:4126
USN-6804-1 https://usn.ubuntu.com/6804-1/
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33601.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none


Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://lists.debian.org/debian-lts-announce/2024/06/msg00026.html
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://security.netapp.com/advisory/ntap-20240524-0014/
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://security.netapp.com/advisory/ntap-20240524-0014/
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none


Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://security.netapp.com/advisory/ntap-20240524-0014/

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://security.netapp.com/advisory/ntap-20240524-0014/
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none


Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007

Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at https://sourceware.org/git/?p=glibc.git;a=blob;f=advisories/GLIBC-SA-2024-0007
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at http://www.openwall.com/lists/oss-security/2024/07/22/5
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none


Vector: SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-05-09T17:26:01Z/ Found at http://www.openwall.com/lists/oss-security/2024/07/22/5
Exploit Prediction Scoring System (EPSS)
Percentile 0.10492
EPSS Score 0.00038
Published At June 14, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2024-04-25T20:51:15.870921+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33601.json 34.0.0rc4