Cyber Resilience

CVE-2024-54458

High

Published: 27 February 2025

Published
27 February 2025
Modified
03 November 2025
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 2.1th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-54458 is a high-severity Use After Free (CWE-416) vulnerability in Linux Linux Kernel. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 2.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and RA-5 (Vulnerability Monitoring and Scanning).

Deeper analysis

CVE-2024-54458 is a use-after-free (UAF) vulnerability in the Linux kernel's SCSI UFS BSG (block layer SCSI generic) component. The issue arises because the bsg_queue pointer is not set to NULL after its removal, which could lead to potential UAF access despite not causing issues in current usage. Affected systems include Linux kernel versions prior to the application of the relevant stable patches, with a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and mapped to CWE-416 (Use After Free).

A local attacker with low privileges can exploit this vulnerability with low attack complexity and no user interaction required. Successful exploitation could result in high impacts to confidentiality, integrity, and availability, potentially allowing arbitrary code execution, data corruption, or denial of service through the UAF condition in the UFS BSG handling.

Mitigation involves applying the upstream patches from the Linux kernel stable repository, as detailed in the referenced commits: 1e95c798d8a7f70965f0f88d4657b682ff0ec75f, 22018622e1e9e371198dbd983af946a844d5924c, 5e7b6e44468c3242c21c2a8656d009fb3eb50a73, 5f782d4741bf558def60df192b858b0efc6a5f0a, and 88a01e9c9ad40c075756ba93b47984461d4ff15d. These patches explicitly set the bsg_queue to NULL after removal to prevent the potential UAF. Security practitioners should update affected kernels promptly, particularly on systems utilizing UFS storage.

EU & UK References

Vulnerability details

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsg_queue to NULL after removal Currently, this does not cause any issues, but I believe it is necessary to set bsg_queue to NULL after removing it…

more

to prevent potential use-after-free (UAF) access.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Local kernel UAF in UFS BSG directly enables privilege escalation via arbitrary code execution from low-privileged context.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-23111Same product: Linux Linux Kernel
CVE-2026-31530Same product: Linux Linux Kernel
CVE-2026-43019Same product: Linux Linux Kernel
CVE-2026-23158Same product: Linux Linux Kernel
CVE-2025-21893Same product: Linux Linux Kernel
CVE-2026-31446Same product: Linux Linux Kernel
CVE-2026-31650Same product: Linux Linux Kernel
CVE-2026-23001Same product: Linux Linux Kernel
CVE-2024-50051Same product: Linux Linux Kernel
CVE-2025-21759Same product: Linux Linux Kernel

Affected Assets

linux
linux kernel
≤ 6.1.129 · 6.2 — 6.6.79 · 6.7 — 6.12.16

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the use-after-free vulnerability by requiring timely remediation through application of Linux kernel patches that set bsg_queue to NULL after removal.

prevent

Provides defense-in-depth memory protections such as ASLR and non-executable memory that hinder exploitation of the UAF in the kernel's UFS BSG component.

detect

Enables proactive identification of CVE-2024-54458 through vulnerability scanning of Linux kernel versions to prioritize patching.

References