cbcvebase.
CVE-2024-35215
published 2024-10-08

CVE-2024-35215: NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow…

PriorityP421medium6.2CVSS 3.1
AVLACLPRNUINSUCNINAH
EPSS
0.16%
5.8th percentile
NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the Networking Stack process.

Affected

2 ranges
VendorProductVersion rangeFixed in
blackberryqnx_software_development_platform>= 7.0 < 8.08.0
blackberryqnx_software_development_platform7.0 – 7.1
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.