Sign in Get started

← All advisories

High severity7.8NVD Advisory· Published Sep 27, 2024· Updated May 5, 2026

CVE-2024-46821

CVE-2024-46821

Description

In the Linux kernel, the following vulnerability has been resolved:

drm/amd/pm: Fix negative array index read

Avoid using the negative values for clk_idex as an index into an array pptable->DpmDescriptor.

V2: fix clk_index return check (Tim Huang)

Affected products

3

Debian/Debian Linux
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
Linux/Kernel
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Range: <5.10.236
Linux/Linuxv5
Range: 5.3

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

lists.debian.org/debian-lts-announce/2025/01/msg00001.htmlnvdMailing ListThird Party Advisory
lists.debian.org/debian-lts-announce/2025/05/msg00030.htmlnvdMailing ListThird Party Advisory

News mentions

0

No linked articles in our index yet.

Severity

HighCVSS v3.1

7.8/ 10

Attack vector: Local
Complexity: Low
Privileges: Low
User interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Probability of exploitation in the next 30 days.

0.01%

VYPR risk score

Composite of severity, exploitation, and reach.

0.51high

cvss	0.507
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000

Weaknesses

CWE-129
Improper Validation of Array Index

CVE ID

CVE-2024-46821

Source code