ID

VAR-202408-2591


CVE

CVE-2024-44944


TITLE

Linux  of  Linux Kernel  Vulnerability regarding lack of memory release after expiration in

Trust: 0.8

sources: JVNDB: JVNDB-2024-007172

DESCRIPTION

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete expectation path is missing a call to the nf_expect_get_id() helper function to calculate the expectation ID, otherwise LSB of the expectation object address is leaked to userspace. Linux of Linux Kernel Contains a vulnerability regarding the lack of free memory after expiration.Service operation interruption (DoS) It may be in a state. This vulnerability allows local attackers to disclose sensitive information on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the implementation of connection tracking. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the kernel. The RUGGEDCOM RST2428P is a Layer 2 Ethernet switch based on SINEC OS with up to 28 non-blocking interfaces. SCALANCE X switches are used to connect industrial components such as programmable logic controllers (PLCs) and human-machine interfaces (HMIs). Multiple vulnerabilities exist in third-party components prior to SIEMENS SINEC OS V3.2. These vulnerabilities could be exploited to corrupt values, leading to undefined behavior or security issues

Trust: 3.33

sources: NVD: CVE-2024-44944 // JVNDB: JVNDB-2024-007172 // ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 1.2

sources: CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350

AFFECTED PRODUCTS

vendor:linuxmodel:kernelscope:eqversion:5.1

Trust: 1.8

vendor:linuxmodel:kernelscope:eqversion:4.19.320

Trust: 1.8

vendor:linuxmodel:kernelscope:ltversion:5.4.282

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.11

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.5

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.6.44

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.2

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.2

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.16

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.10.224

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.15.165

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.7

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.10.3

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.1.103

Trust: 1.0

vendor:linuxmodel:kernelscope:eqversion:5.5 that's all 5.10.224

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.7 that's all 6.10.3

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion: -

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.2 that's all 5.4.282

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.2 that's all 6.6.44

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.16 that's all 6.1.103

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.11 that's all 5.15.165

Trust: 0.8

vendor:linuxmodel:kernelscope: - version: -

Trust: 0.7

vendor:siemensmodel:ruggedcom rst2428pscope:ltversion:v3.1

Trust: 0.6

vendor:siemensmodel:scalance xc-300/xr-300/xc-400/xr-500wg/xr-500 familyscope:ltversion:v3.1

Trust: 0.6

vendor:siemensmodel:scalance xcm-/xrm-/xch-/xrh-300 familyscope:ltversion:v3.1

Trust: 0.6

vendor:siemensmodel:ruggedcom rst2428pscope:ltversion:v3.2

Trust: 0.6

vendor:siemensmodel:scalance xc-300/xr-300/xc-400/xr-500wg/xr-500 familyscope:ltversion:v3.2

Trust: 0.6

vendor:siemensmodel:scalance xcm-/xrm-/xch-/xrh-300 familyscope:ltversion:v3.2

Trust: 0.6

sources: ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-007172 // NVD: CVE-2024-44944

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2024-44944
value: MEDIUM

Trust: 1.0

NVD: CVE-2024-44944
value: MEDIUM

Trust: 0.8

ZDI: ZDI-24-1182
value: MEDIUM

Trust: 0.7

CNVD: CNVD-2025-19346
value: HIGH

Trust: 0.6

CNVD: CNVD-2025-19350
value: HIGH

Trust: 0.6

CNVD: CNVD-2025-19346
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

CNVD: CNVD-2025-19350
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2024-44944
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 1.0

NVD: CVE-2024-44944
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

ZDI: ZDI-24-1182
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.0
impactScore: 4.0
version: 3.0

Trust: 0.7

sources: ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-007172 // NVD: CVE-2024-44944

PROBLEMTYPE DATA

problemtype:CWE-401

Trust: 1.0

problemtype:Lack of memory release after expiration (CWE-401) [NVD evaluation ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-007172 // NVD: CVE-2024-44944

PATCH

title:Linux Kernel Archivesurl:https://git.kernel.org/stable/c/24f407042cf90b0872de667460230d8d50c06c39

Trust: 0.8

title:Linux has issued an update to correct this vulnerability.url:https://patchwork.kernel.org/project/netdevbpf/patch/20240717215214.225394-2-pablo@netfilter.org/

Trust: 0.7

title:Patch for Multiple vulnerabilities in Siemens SINEC OS third-party componentsurl:https://www.cnvd.org.cn/patchInfo/show/723071

Trust: 0.6

title:Patch for Multiple vulnerabilities exist in third-party components of SIEMENS SINEC OS V3.2 and earlierurl:https://www.cnvd.org.cn/patchInfo/show/723061

Trust: 0.6

sources: ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-007172

EXTERNAL IDS

db:NVDid:CVE-2024-44944

Trust: 2.6

db:ZDIid:ZDI-24-1182

Trust: 1.7

db:SIEMENSid:SSA-613116

Trust: 1.6

db:SIEMENSid:SSA-355557

Trust: 1.6

db:SIEMENSid:SSA-265688

Trust: 1.0

db:SIEMENSid:SSA-398330

Trust: 1.0

db:JVNid:JVNVU92169998

Trust: 0.8

db:ICS CERTid:ICSA-25-226-07

Trust: 0.8

db:JVNDBid:JVNDB-2024-007172

Trust: 0.8

db:ZDI_CANid:ZDI-CAN-24591

Trust: 0.7

db:CNVDid:CNVD-2025-19346

Trust: 0.6

db:CNVDid:CNVD-2025-19350

Trust: 0.6

sources: ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-007172 // NVD: CVE-2024-44944

REFERENCES

url:https://cert-portal.siemens.com/productcert/html/ssa-613116.html

Trust: 1.6

url:https://cert-portal.siemens.com/productcert/html/ssa-355557.html

Trust: 1.6

url:https://www.zerodayinitiative.com/advisories/zdi-24-1182/

Trust: 1.0

url:https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Trust: 1.0

url:https://git.kernel.org/stable/c/27662b46f2adaa52c1665a82af4b21c42c4337fd

Trust: 1.0

url:https://git.kernel.org/stable/c/eb4ca1a97e08ff5b920664ba292e576257e2d184

Trust: 1.0

url:https://git.kernel.org/stable/c/24f407042cf90b0872de667460230d8d50c06c39

Trust: 1.0

url:https://git.kernel.org/stable/c/782161895eb4ac45cf7cfa8db375bd4766cb8299

Trust: 1.0

url:https://git.kernel.org/stable/c/5e2c24f7b0911b15c29aefce760bcf770542fb61

Trust: 1.0

url:https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Trust: 1.0

url:https://cert-portal.siemens.com/productcert/html/ssa-398330.html

Trust: 1.0

url:https://git.kernel.org/stable/c/64c0b8e64be8368617ef08dfc59a3160563a1435

Trust: 1.0

url:https://git.kernel.org/stable/c/74de442b8e12a207c07953ee068009a7701aff8f

Trust: 1.0

url:https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html

Trust: 1.0

url:https://git.kernel.org/stable/c/66e7650dbbb8e236e781c670b167edc81e771450

Trust: 1.0

url:https://jvn.jp/vu/jvnvu92169998/index.html

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2024-44944

Trust: 0.8

url:https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07

Trust: 0.8

url:https://patchwork.kernel.org/project/netdevbpf/patch/20240717215214.225394-2-pablo@netfilter.org/

Trust: 0.7

sources: ZDI: ZDI-24-1182 // CNVD: CNVD-2025-19346 // CNVD: CNVD-2025-19350 // JVNDB: JVNDB-2024-007172 // NVD: CVE-2024-44944

CREDITS

HexRabbit (@h3xr4bb1t) from DEVCORE Research Team

Trust: 0.7

sources: ZDI: ZDI-24-1182

SOURCES

db:ZDIid:ZDI-24-1182
db:CNVDid:CNVD-2025-19346
db:CNVDid:CNVD-2025-19350
db:JVNDBid:JVNDB-2024-007172
db:NVDid:CVE-2024-44944

LAST UPDATE DATE

2026-06-19T22:05:49.699000+00:00


SOURCES UPDATE DATE

db:ZDIid:ZDI-24-1182date:2024-08-27T00:00:00
db:CNVDid:CNVD-2025-19346date:2025-08-22T00:00:00
db:CNVDid:CNVD-2025-19350date:2025-08-22T00:00:00
db:JVNDBid:JVNDB-2024-007172date:2025-09-02T02:37:00
db:NVDid:CVE-2024-44944date:2026-05-12T12:17:09.123

SOURCES RELEASE DATE

db:ZDIid:ZDI-24-1182date:2024-08-27T00:00:00
db:CNVDid:CNVD-2025-19346date:2025-08-12T00:00:00
db:CNVDid:CNVD-2025-19350date:2025-08-12T00:00:00
db:JVNDBid:JVNDB-2024-007172date:2024-09-04T00:00:00
db:NVDid:CVE-2024-44944date:2024-08-30T08:15:04.580