CVE-2024-0193

Name: CVE-2024-0193
Creator: NVD / NIST
Published: 2024-01-02T18:15:08.287+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 6.7/10EPSS 0.84%

Last modified Jun 17, 2026

CVE-2024-0193 is a medium-severity vulnerability rated 6.7/10 on the CVSS scale. A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. EPSS estimates a 0.84% chance of exploitation in the next 30 days.

Description

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when the pipapo set is removed, the element can be deactivated twice. This can cause a use-after-free issue on an NFT_CHAIN object or NFT_OBJECT object, allowing a local unprivileged user with CAP_NET_ADMIN capability to escalate their privileges on the system.

Metrics

CVSS 3.1

6.7/10

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.84%

53.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Redhat	Codeready Linux Builder For Eus	9.2
Redhat	Codeready Linux Builder For Ibm Z Systems Eus	9.2_s390x
Redhat	Codeready Linux Builder For Power Little Endian Eus	9.2
Redhat	Enterprise Linux	9.2
Redhat	Enterprise Linux For Els	9.2
Redhat	Enterprise Linux For Eus	9.2
Redhat	Enterprise Linux For Ibm Z Systems	9.2_s390x
Redhat	Enterprise Linux For Ibm Z Systems Els	9.2
Redhat	Enterprise Linux For Ibm Z Systems Eus	9.2
Redhat	Enterprise Linux For Power Little Endian Els	9.2
Redhat	Enterprise Linux For Power Little Endian Eus	9.2
Redhat	Enterprise Linux For Update Services For Sap Solutions	9.2
Redhat	Enterprise Linux Server Aus	9.2
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	9.2
Redhat	Codeready Linux Builder	9.0
Redhat	Codeready Linux Builder For Eus	9.4
Redhat	Codeready Linux Builder For Eus	9.6
Redhat	Codeready Linux Builder For Ibm Z Systems	9.0_s390x
Redhat	Codeready Linux Builder For Ibm Z Systems Eus	9.4_s390x
Redhat	Codeready Linux Builder For Ibm Z Systems Eus	9.6_s390x
Redhat	Codeready Linux Builder For Power Little Endian	9.0_ppc64le
Redhat	Codeready Linux Builder For Power Little Endian Eus	9.4_ppc64le
Redhat	Codeready Linux Builder For Power Little Endian Eus	9.6_ppc64le
Redhat	Enterprise Linux	9.0
Redhat	Enterprise Linux For Arm 64	9.4_aarch64
Redhat	Enterprise Linux For Arm 64	9.6_aarch64
Redhat	Enterprise Linux For Arm 64 Els	9.4_aarch64
Redhat	Enterprise Linux For Arm 64 Els	9.6_aarch64
Redhat	Enterprise Linux For Arm 64 Eus	9.4_aarch64
Redhat	Enterprise Linux For Arm 64 Eus	9.6_aarch64
Redhat	Enterprise Linux For Els	9.4
Redhat	Enterprise Linux For Els	9.6
Redhat	Enterprise Linux For Eus	9.4
Redhat	Enterprise Linux For Eus	9.6
Redhat	Enterprise Linux For Ibm Z Systems	9.0_s390x
Redhat	Enterprise Linux For Ibm Z Systems	9.4_s390x
Redhat	Enterprise Linux For Ibm Z Systems	9.6_s390x
Redhat	Enterprise Linux For Ibm Z Systems Els	9.4_s390x
Redhat	Enterprise Linux For Ibm Z Systems Els	9.6_s390x
Redhat	Enterprise Linux For Ibm Z Systems Eus	9.4_s390x
Redhat	Enterprise Linux For Ibm Z Systems Eus	9.6_s390x
Redhat	Enterprise Linux For Power Little Endian Els	9.4_ppc64le
Redhat	Enterprise Linux For Power Little Endian Els	9.6_ppc64le
Redhat	Enterprise Linux For Power Little Endian Eus	9.0_ppc64le
Redhat	Enterprise Linux For Power Little Endian Eus	9.4_ppc64le
Redhat	Enterprise Linux For Power Little Endian Eus	9.6_ppc64le
Redhat	Enterprise Linux For Update Services For Sap Solutions	9.4
Redhat	Enterprise Linux For Update Services For Sap Solutions	9.6
Redhat	Enterprise Linux Server Aus	9.4
Redhat	Enterprise Linux Server Aus	9.6

Showing 50 of 60 affected configurations. See NVD for the full list.

References

https://access.redhat.com/errata/RHSA-2024:1018Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1019Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1248Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:2094Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:4412Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:4415Vendor Advisory
https://access.redhat.com/security/cve/CVE-2024-0193Mitigation, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2255653Issue Tracking, Patch, Third Party Advisory
https://access.redhat.com/errata/RHSA-2024:1018Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1019Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:1248Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:2094Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:4412Vendor Advisory
https://access.redhat.com/errata/RHSA-2024:4415Vendor Advisory
https://access.redhat.com/security/cve/CVE-2024-0193Mitigation, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2255653Issue Tracking, Patch, Third Party Advisory

Timeline

Published: Jan 2, 2024
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2024-0193?

How severe is CVE-2024-0193?

CVE-2024-0193 has a CVSS score of 6.7/10 (MEDIUM severity). The EPSS model estimates a 0.84% probability of exploitation in the next 30 days.

How do I fix CVE-2024-0193?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2024-0193?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST