CVE-2024-35215 | THREATINT

Description

NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a denial-of-service condition in the context of the Networking Stack process.

PUBLISHED Reserved 2024-05-13 | Published 2024-10-08 | Updated 2025-08-22 | Assigner blackberry

MEDIUM: 6.2CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-476 NULL Pointer Dereference

Product status

Default status

unaffected

7.0 (custom)

affected

References

support.blackberry.com/pkb/s/article/140162

cve.org (CVE-2024-35215)

nvd.nist.gov (CVE-2024-35215)

Download JSON