Cyber Resilience

CVE-2024-25371

High

Published: 10 January 2025

Published
10 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score 0.0028 51.6th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-25371 is a high-severity an unspecified weakness vulnerability. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 48.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-11 (Error Handling) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2024-25371 is an interface vulnerability in Gramine, affecting versions prior to the commit a390e33e16ed374a40de2344562a937f289be2e1. The issue stems from mismatching software signals against hardware exceptions, which can disrupt normal operation. Gramine is a library OS for running applications in secure enclaves, and this flaw was published on January 10, 2025, with a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity primarily due to availability impact.

A remote, unauthenticated attacker can exploit this vulnerability with low complexity and no user interaction required. Successful exploitation leads to a denial of service, as the mismatch between software signals and hardware exceptions causes crashes or hangs in the affected Gramine runtime.

The Gramine project addressed this vulnerability in commit a390e33e16ed374a40de2344562a937f289be2e1, available at https://github.com/gramineproject/gramine/commit/a390e33e16ed374a40de2344562a937f289be2e1. A proof-of-concept is documented at https://github.com/ahoi-attacks/sigy/blob/main/pocs/gramine/cve.md, confirming the issue and demonstrating exploitation. Security practitioners should update to the fixed commit or later to mitigate the risk.

EU & UK References

Vulnerability details

Gramine before a390e33e16ed374a40de2344562a937f289be2e1 suffers from an Interface vulnerability due to mismatching SW signals vs HW exceptions.

CWE(s)
None listed

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Vulnerability directly enables remote exploitation of the Gramine runtime (application/system) to trigger crashes/hangs via signal/exception mismatch, matching T1499.004 Application or System Exploitation for Endpoint DoS.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Flaw remediation directly mitigates this vulnerability by applying the specific Gramine commit fix to address the SW signal vs HW exception mismatch causing DoS.

prevent

Error handling ensures software properly manages hardware exceptions and signals, preventing crashes or hangs from the interface mismatch in Gramine.

prevent

Denial-of-service protection limits the availability impact of remote exploitation triggering the Gramine runtime disruption.

References