CVE-2024-11614

7.4 HIGH
Published: December 18, 2024 Modified: April 15, 2026
View on NVD

Description

An out-of-bounds read vulnerability was found in DPDK's Vhost library checksum offload feature. This issue enables an untrusted or compromised guest to crash the hypervisor's vSwitch by forging Virtio descriptors to cause out-of-bounds reads. This flaw allows an attacker with a malicious VM using a virtio driver to cause the vhost-user side to crash by sending a packet with a Tx checksum offload request and an invalid csum_start offset.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0
Vector String
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
https://access.redhat.com/errata/RHSA-2025:0208
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0209
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0210
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0211
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0220
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0221
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:0222
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:3963
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:3964
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:3965
Source: secalert@redhat.com
https://access.redhat.com/errata/RHSA-2025:3970
Source: secalert@redhat.com
https://access.redhat.com/security/cve/CVE-2024-11614
Source: secalert@redhat.com
https://bugzilla.redhat.com/show_bug.cgi?id=2327955
Source: secalert@redhat.com
http://www.openwall.com/lists/oss-security/2024/12/17/3
Source: af854a3a-2127-422b-91ae-364da2661108

14 reference(s) from NVD

Quick Stats

CVSS v3 Score
7.4 / 10.0
EPSS (Exploit Probability)
0.2%
43th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-125

Related CVEs

CVE-2026-6569 7.3
CVE-2026-6568 7.3
CVE-2026-6564 4.3
CVE-2026-6563 8.8
CVE-2026-6562 7.3