Cyber Resilience

CVE-2024-58003

High

Published: 27 February 2025

Published
27 February 2025
Modified
23 October 2025
KEV Added
Patch
CVSS Score v3.1 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 3.0th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-58003 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Linux Linux Kernel. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 3.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and CM-7 (Least Functionality).

Deeper analysis

CVE-2024-58003 is a vulnerability in the Linux kernel's media i2c ds90ub9x3 subsystem, specifically affecting the ub913 and ub953 drivers. The issue stems from extraneous calls to fwnode_handle_put(priv->sd.fwnode) during the driver removal process. These calls, remnants of a prior code change in commit 905f88ccebb1, result in a reference count "overflow" when the driver is removed multiple times, potentially leading to memory corruption or system crashes. The vulnerability is classified under CWE-787 (Out-of-bounds Write) with a CVSS v3.1 base score of 7.8.

A local attacker with low privileges (AV:L/AC:L/PR:L/UI:N/S:U) can exploit this flaw by triggering repeated removal of the affected drivers. Successful exploitation could grant high-impact confidentiality, integrity, and availability consequences (C:H/I:H/A:H), such as arbitrary memory corruption or kernel crashes, depending on the specific conditions and kernel configuration involving these I2C media drivers.

Mitigation requires applying the relevant stable kernel patches, as detailed in the upstream commit fixes available at kernel.org stable repositories. Key patches include commits 474d7baf91d37bc411fa60de5bbf03c9dd82e18a, 60b45ece41c5632a3a3274115a401cb244180646, 70743d6a8b256225675711e7983825f1be86062d, and f4e4373322f8d4c19721831f7fb989e52d30dab0, which remove the unnecessary fwnode_handle_put() calls to prevent the reference count imbalance. Security practitioners should update affected Linux kernels promptly, particularly those using the ds90ub9x3 drivers in media applications.

EU & UK References

Vulnerability details

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ds90ub9x3: Fix extra fwnode_handle_put() The ub913 and ub953 drivers call fwnode_handle_put(priv->sd.fwnode) as part of their remove process, and if the driver is removed multiple times, eventually leads to…

more

put "overflow", possibly causing memory corruption or crash. The fwnode_handle_put() is a leftover from commit 905f88ccebb1 ("media: i2c: ds90ub9x3: Fix sub-device matching"), which changed the code related to the sd.fwnode, but missed removing these fwnode_handle_put() calls.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
Why these techniques?

Local memory corruption in kernel driver (CWE-787) directly enables privilege escalation via repeated driver removal by low-privileged attacker.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2025-71137Same product: Linux Linux Kernel
CVE-2026-31772Same product: Linux Linux Kernel
CVE-2026-23378Same product: Linux Linux Kernel
CVE-2026-31494Same product: Linux Linux Kernel
CVE-2025-21735Same product: Linux Linux Kernel
CVE-2025-21650Same product: Linux Linux Kernel
CVE-2024-52319Same product: Linux Linux Kernel
CVE-2026-23343Same product: Linux Linux Kernel
CVE-2026-23092Same product: Linux Linux Kernel
CVE-2026-43500Same product: Linux Linux Kernel

Affected Assets

linux
linux kernel
6.6 — 6.6.78 · 6.7 — 6.12.14 · 6.13 — 6.13.3

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mandates timely remediation of the kernel flaw by applying patches that remove extraneous fwnode_handle_put calls to prevent reference count overflow.

prevent

Prevents exploitation by disabling or restricting non-essential ub913 and ub953 drivers in the ds90ub9x3 media subsystem.

prevent

Mitigates memory corruption impacts from reference count overflow using kernel memory protections like randomization and page restrictions.

References