Multiple Cisco Application Policy Infrastructure Vulnerabilities

September 2, 2024

FormBook Malware – Active IOCs

September 3, 2024

CVE-2024-35966 – Linux Kernel Vulnerability

September 2, 2024

Severity

Medium

Analysis Summary

CVE-2024-35966

Linux Kernel is vulnerable to a denial of service, caused by not validating setsockopt user input by the Bluetooth: RFCOMM module. By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service condition.

Impact

Denial of Service

Indicators of Compromise

CVE

CVE-2024-35966

Affected Vendors

Linux

Affected Products

Linux Kernel 6.1
Linux Kernel 6.6
Linux Kernel 6.8

Remediation

Refer to Linux Kernel GIT Repository for patch, upgrade or suggested workaround information.

Linux Kernel GIT Repository

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Bitter APT – Active IOCs

Google Chrome 0-Day Vulnerability Actively Exploited – Immediate Update

Multiple Microsoft Windows Products Zero-Day Vulnerabilities Exploit in the Wild

Threat Insights

About Us

Our Leadership

CSR

Connect with Us