CVE-2024-50181Deserialization of Untrusted Data in Cbl2 Kernel 5.15.167.1-2 ON CBL Mariner 2.0

CWE-502Deserialization of Untrusted Data24 documents6 sources
Severity
8.8HIGHOSV
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Linux KernelMsrc Cbl2 Kernel 5.15.167.1-2 ON CBL Mariner 2.0Msrc Cbl2 Kernel 5.15.173.1-1 ON CBL Mariner 2.0+2 more
Timeline
PublishedAug 14

Description

ICS Advisory ## Siemens Third-Party Components in SINEC OS Release DateAugust 14, 2025 Alert CodeICSA-25-226-07 Related topics: Industrial Control System Vulnerabilities, Industrial Control Systems As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CE

Affected Packages5 packages

Ubuntulinux/linux_kernel< 5.15.0-127.137+1

🔴Vulnerability Details

11
OSV
linux-oem-6.11 vulnerabilities2025-02-28
OSV
linux-aws, linux-azure, linux-gcp, linux-oracle, linux-raspi, linux-realtime vulnerabilities2025-02-19
OSV
linux, linux-lowlatency vulnerabilities2025-02-19
OSV
linux-xilinx-zynqmp vulnerabilities2025-01-20
OSV
linux-azure, linux-intel-iotg-5.15 vulnerabilities2025-01-09

📋Vendor Advisories

13
CISA ICS
Siemens Third-Party Components in SINEC OS2025-08-14
Ubuntu
Linux kernel vulnerabilities2025-02-28
Ubuntu
Linux kernel vulnerabilities2025-02-19
Ubuntu
Linux kernel vulnerabilities2025-02-19
Ubuntu
Linux kernel (Xilinx ZynqMP) vulnerabilities2025-01-20
CVE-2024-50181 — Deserialization of Untrusted Data | cvebase