1 Min Read
CVE-2024-32995 through CVE-2024-32999
Written by Mission Secure
Assigner: Huawei Technologies
CVE-2024-32995, CVE-2024-32996, CVE-2024-32997, CVE-2024-32998, and CVE-2024-32999 present critical risks to OT environments. CVE-2024-32995 involves a denial of service vulnerability in the AMS module, CVE-2024-32996 highlights a privilege escalation vulnerability in the account module, CVE-2024-32997 concerns a race condition vulnerability in the binder driver module, CVE-2024-32998 addresses a NULL pointer access vulnerability in the clock module, and CVE-2024-32999 warns of a cracking vulnerability in the OS security module. Exploitation of these vulnerabilities could lead to disruptions in availability crucial for OT operations.
From the CVE database:
CVE-2024-32995, Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect availability.
https://www.cve.org/CVERecord?id=CVE-2024-32995
CVE-2024-32996, Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect availability.
https://www.cve.org/CVERecord?id=CVE-2024-32996
CVE-2024-32997, Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect availability.
https://www.cve.org/CVERecord?id=CVE-2024-32997
CVE-2024-32998, NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect availability.
https://www.cve.org/CVERecord?id=CVE-2024-32998
CVE-2024-32999, Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.
https://www.cve.org/CVERecord?id=CVE-2024-32999
Originally published May 11, 2024.