vulnerability

Red Hat: CVE-2024-25744: kernel: untrusted VMM can trigger int80 syscall handling (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:M/Au:S/C:N/I:N/A:C)	Feb 12, 2024	May 1, 2024	Nov 14, 2025

Severity

CVSS

(AV:L/AC:M/Au:S/C:N/I:N/A:C)

Published

Feb 12, 2024

Added

May 1, 2024

Modified

Nov 14, 2025

Description

In the Linux kernel before 6.6.7, an untrusted VMM can trigger int80 syscall handling at any given point. This is related to arch/x86/coco/tdx/tdx.c and arch/x86/mm/mem_encrypt_amd.c.

Solutions

no-fix-redhat-rpm-packageredhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-693
NVD-CVE-2024-25744
REDHAT-RHSA-2024:2394
REDHAT-RHSA-2024:2621
REDHAT-RHSA-2024:2845
REDHAT-RHSA-2024:2846
REDHAT-RHSA-2024:3618
REDHAT-RHSA-2024:3627

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today