Vulnerability Database

290,278

Total vulnerabilities in the database

CVE-2024-26673

In the Linux kernel, the following vulnerability has been resolved:

netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations

  • Disallow families other than NFPROTO_{IPV4,IPV6,INET}.
  • Disallow layer 4 protocol with no ports, since destination port is a mandatory attribute for this object.
  • Published: Apr 2, 2024
  • Updated: May 4, 2025
  • CVE: CVE-2024-26673
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.1
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

No CWE or OWASP classifications available.

Software From Fixed in
linux / linux_kernel 6.8-rc1 6.8-rc1.x
linux / linux_kernel 5.11 5.15.149
linux / linux_kernel 5.5 5.10.210
linux / linux_kernel 6.8-rc2 6.8-rc2.x
linux / linux_kernel 6.7 6.7.4
linux / linux_kernel 6.2 6.6.16
linux / linux_kernel 5.3 5.4.269
linux / linux_kernel 5.16 6.1.77
debian / debian_linux 10.0 10.0.x