CVE-2024-21935
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-21935
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to manipulate Redfish® API commands to remove files from the local root directory, potentially resulting in data corruption.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
非预期数据类型处理不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
AMD Instinct MI300X accelerators 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD Instinct MI300X accelerators是美国超威半导体(AMD)公司的一款数据中心级GPU加速卡。 AMD Instinct MI300X accelerators存在安全漏洞,该漏洞源于输入验证不当,可能导致特权攻击者通过Redfish API命令删除本地根目录文件,造成数据损坏。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| AMD | AMD Instinct™ MI300X | BKC 24.10 | - |
II. Public POCs for CVE-2024-21935
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2024-21935
请登录查看更多情报信息。
IV. Related Vulnerabilities
Same weakness: CWE-241
- CVE-2025-66550
Nextcloud Calendar attachments of local files are offered to - CVE-2024-21927
AMD Instinct MI300X accelerators 安全漏洞 - CVE-2025-7339
on-headers vulnerable to http response header manipulation - CVE-2025-2268
HP LaserJet MFP M232-M237 Printer Series - Potential Denial - CVE-2025-1004
Certain HP LaserJet Pro Printers – Potential Denial of Servi
V. Comments for CVE-2024-21935
No comments yet