CVE-2024-25371
Published: 10 January 2025
Summary
CVE-2024-25371 is a high-severity an unspecified weakness vulnerability. Its CVSS base score is 7.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked in the top 48.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-11 (Error Handling) and SI-2 (Flaw Remediation).
Deeper analysis
CVE-2024-25371 is an interface vulnerability in Gramine, affecting versions prior to the commit a390e33e16ed374a40de2344562a937f289be2e1. The issue stems from mismatching software signals against hardware exceptions, which can disrupt normal operation. Gramine is a library OS for running applications in secure enclaves, and this flaw was published on January 10, 2025, with a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high severity primarily due to availability impact.
A remote, unauthenticated attacker can exploit this vulnerability with low complexity and no user interaction required. Successful exploitation leads to a denial of service, as the mismatch between software signals and hardware exceptions causes crashes or hangs in the affected Gramine runtime.
The Gramine project addressed this vulnerability in commit a390e33e16ed374a40de2344562a937f289be2e1, available at https://github.com/gramineproject/gramine/commit/a390e33e16ed374a40de2344562a937f289be2e1. A proof-of-concept is documented at https://github.com/ahoi-attacks/sigy/blob/main/pocs/gramine/cve.md, confirming the issue and demonstrating exploitation. Security practitioners should update to the fixed commit or later to mitigate the risk.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-22704
Vulnerability details
Gramine before a390e33e16ed374a40de2344562a937f289be2e1 suffers from an Interface vulnerability due to mismatching SW signals vs HW exceptions.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerability directly enables remote exploitation of the Gramine runtime (application/system) to trigger crashes/hangs via signal/exception mismatch, matching T1499.004 Application or System Exploitation for Endpoint DoS.
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Flaw remediation directly mitigates this vulnerability by applying the specific Gramine commit fix to address the SW signal vs HW exception mismatch causing DoS.
Error handling ensures software properly manages hardware exceptions and signals, preventing crashes or hangs from the interface mismatch in Gramine.
Denial-of-service protection limits the availability impact of remote exploitation triggering the Gramine runtime disruption.