CVE-2024-26714 : In the Linux kernel, the following vulnerability has been resolved: interconnec

In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: sc8180x: Mark CO0 BCM keepalive The CO0 BCM needs to be up at all times, otherwise some hardware (like the UFS controller) loses its connection to the rest of the SoC, resulting in a hang of the platform, accompanied by a spectacular logspam. Mark it as keepalive to prevent such cases.

Published 2024-04-03 15:15:54

Updated 2025-03-17 15:36:01

Source Linux

View at NVD, CVE.org

Products affected by CVE-2024-26714

Linux » Linux Kernel
Versions from including (>=) 5.15 and before (<) 6.1.79
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.2 and before (<) 6.6.18
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel
Versions from including (>=) 6.7 and before (<) 6.7.6
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC1
cpe:2.3:o:linux:linux_kernel:6.8:rc1:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC2
cpe:2.3:o:linux:linux_kernel:6.8:rc2:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC3
cpe:2.3:o:linux:linux_kernel:6.8:rc3:*:*:*:*:*:*
Matching versions
Linux » Linux Kernel » Version: 6.8 Update RC4
cpe:2.3:o:linux:linux_kernel:6.8:rc4:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2024-26714

EPSS FAQ

0.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 1 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-26714

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H	1.8	3.6	NIST	2025-03-17
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

References for CVE-2024-26714

https://git.kernel.org/stable/c/7a3a70dd08e4b7dffc2f86f2c68fc3812804b9d0

interconnect: qcom: sc8180x: Mark CO0 BCM keepalive - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/d8e36ff40cf9dadb135f3a97341c02c9a7afcc43

interconnect: qcom: sc8180x: Mark CO0 BCM keepalive - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/85e985a4f46e462a37f1875cb74ed380e7c0c2e0

interconnect: qcom: sc8180x: Mark CO0 BCM keepalive - kernel/git/stable/linux.git - Linux kernel stable tree
Patch
https://git.kernel.org/stable/c/6616d3c4f8284a7b3ef978c916566bd240cea1c7

interconnect: qcom: sc8180x: Mark CO0 BCM keepalive - kernel/git/stable/linux.git - Linux kernel stable tree
Patch

Jump to

Vulnerability Details : CVE-2024-26714

Products affected by CVE-2024-26714

Exploit prediction scoring system (EPSS) score for CVE-2024-26714

CVSS scores for CVE-2024-26714

References for CVE-2024-26714