Vulnerability Database

309,961

Total vulnerabilities in the database

CVE-2024-11149

In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.

Published: Dec 6, 2024
Updated: Nov 16, 2025
CVE: CVE-2024-11149
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.9
AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
openbsd / openbsd	-	7.4
openbsd / openbsd	7.4	7.4.x
openbsd / openbsd	7.4-errata_001	7.4-errata_001.x
openbsd / openbsd	7.4-errata_002	7.4-errata_002.x
openbsd / openbsd	7.4-errata_003	7.4-errata_003.x
openbsd / openbsd	7.4-errata_004	7.4-errata_004.x
openbsd / openbsd	7.4-errata_005	7.4-errata_005.x
openbsd / openbsd	7.4-errata_006	7.4-errata_006.x
openbsd / openbsd	7.4-errata_007	7.4-errata_007.x
openbsd / openbsd	7.4-errata_008	7.4-errata_008.x
openbsd / openbsd	7.4-errata_009	7.4-errata_009.x
openbsd / openbsd	7.4-errata_010	7.4-errata_010.x
openbsd / openbsd	7.4-errata_011	7.4-errata_011.x
openbsd / openbsd	7.4-errata_012	7.4-errata_012.x
openbsd / openbsd	7.4-errata_013	7.4-errata_013.x

https://ftp.openbsd.org/pub/OpenBSD/patches/7.4/common/014_vmm.patch.sig

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime