CVE-2024-21886 - Vulnerability Details

A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This issue may lead to an application crash or, in some circumstances, remote code execution in SSH X11 forwarding environments.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0026.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Redhat	Enterprise Linux Rhel Aus Rhel E4s Rhel Els Rhel Eus Rhel Tus
Xorg	Xserver Xwayland

No data.

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 7
xorg-x11-server-0:1.20.4-27.el7_9	cpe:/o:redhat:enterprise_linux:7	RHSA-2024:0320	2024-01-22T00:00:00Z
tigervnc-0:1.8.0-31.el7_9	cpe:/o:redhat:enterprise_linux:7	RHSA-2024:0629	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8
tigervnc-0:1.13.1-2.el8_9.7	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:0607	2024-01-30T00:00:00Z
xorg-x11-server-0:1.20.11-22.el8	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:2995	2024-05-22T00:00:00Z
xorg-x11-server-Xwayland-0:21.1.3-15.el8	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:2996	2024-05-22T00:00:00Z
Red Hat Enterprise Linux 8.2 Advanced Update Support
tigervnc-0:1.9.0-15.el8_2.9	cpe:/a:redhat:rhel_aus:8.2	RHSA-2024:0617	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8.2 Telecommunications Update Service
tigervnc-0:1.9.0-15.el8_2.9	cpe:/a:redhat:rhel_tus:8.2	RHSA-2024:0617	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions
tigervnc-0:1.9.0-15.el8_2.9	cpe:/a:redhat:rhel_e4s:8.2	RHSA-2024:0617	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support
tigervnc-0:1.11.0-8.el8_4.8	cpe:/a:redhat:rhel_aus:8.4	RHSA-2024:0558	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Telecommunications Update Service
tigervnc-0:1.11.0-8.el8_4.8	cpe:/a:redhat:rhel_tus:8.4	RHSA-2024:0558	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions
tigervnc-0:1.11.0-8.el8_4.8	cpe:/a:redhat:rhel_e4s:8.4	RHSA-2024:0558	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
tigervnc-0:1.12.0-6.el8_6.9	cpe:/a:redhat:rhel_eus:8.6	RHSA-2024:0621	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 8.8 Extended Update Support
tigervnc-0:1.12.0-15.el8_8.7	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:0597	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 9
tigervnc-0:1.13.1-3.el9_3.6	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:0557	2024-01-30T00:00:00Z
xorg-x11-server-0:1.20.11-24.el9	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:2169	2024-04-30T00:00:00Z
xorg-x11-server-Xwayland-0:22.1.9-5.el9	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:2170	2024-04-30T00:00:00Z
Red Hat Enterprise Linux 9.0 Extended Update Support
tigervnc-0:1.11.0-22.el9_0.8	cpe:/a:redhat:rhel_eus:9.0	RHSA-2024:0614	2024-01-30T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
tigervnc-0:1.12.0-14.el9_2.5	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:0626	2024-01-31T00:00:00Z

No data.

Advisories

Source	ID	Title
Debian DLA	DLA-3721-1	xorg-server security update
Debian DSA	DSA-5603-1	xorg-server security update
EUVD	EUVD-2024-19497	A heap buffer overflow flaw was found in the DisableDevice function in the X.Org server. This issue may lead to an application crash or, in some circumstances, remote code execution in SSH X11 forwarding environments.
Ubuntu USN	USN-6587-1	X.Org X Server vulnerabilities
Ubuntu USN	USN-6587-2	X.Org X Server vulnerabilities
Ubuntu USN	USN-6587-5	X.Org X Server vulnerabilities

Fixes

Solution

No solution given by the vendor.

Workaround

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

References

Link	Providers
https://access.redhat.com/errata/RHSA-2024:0320
https://access.redhat.com/errata/RHSA-2024:0557
https://access.redhat.com/errata/RHSA-2024:0558
https://access.redhat.com/errata/RHSA-2024:0597
https://access.redhat.com/errata/RHSA-2024:0607
https://access.redhat.com/errata/RHSA-2024:0614
https://access.redhat.com/errata/RHSA-2024:0617
https://access.redhat.com/errata/RHSA-2024:0621
https://access.redhat.com/errata/RHSA-2024:0626
https://access.redhat.com/errata/RHSA-2024:0629
https://access.redhat.com/errata/RHSA-2024:2169
https://access.redhat.com/errata/RHSA-2024:2170
https://access.redhat.com/errata/RHSA-2024:2995
https://access.redhat.com/errata/RHSA-2024:2996
https://access.redhat.com/errata/RHSA-2025:12751
https://access.redhat.com/security/cve/CVE-2024-21886
https://bugzilla.redhat.com/show_bug.cgi?id=2256542
https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZ2IJJDHJETNE76VUX4G7UI5EG5HYFEH/
https://nvd.nist.gov/vuln/detail/CVE-2024-21886
https://www.cve.org/CVERecord?id=CVE-2024-21886

History

Tue, 04 Nov 2025 22:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TZ2IJJDHJETNE76VUX4G7UI5EG5HYFEH/

Tue, 04 Nov 2025 19:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.debian.org/debian-lts-announce/2024/01/msg00016.html https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5J4H7CH565ALSZZYKOJFYDA5KFLG6NUK/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EJBMCWQ54R6ZL3MYU2D2JBW6JMZL7BQW/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IZ75X54CN4IFYMIV7OK3JVZ57FHQIGIC/

Mon, 04 Aug 2025 21:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Redhat rhel Els
CPEs		cpe:/o:redhat:rhel_els:6
Vendors & Products		Redhat rhel Els
References		https://access.redhat.com/errata/RHSA-2025:12751

Wed, 06 Nov 2024 15:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Xorg Xorg xserver Xorg xwayland
CPEs		cpe:2.3:a:xorg:xserver:::::::: cpe:2.3:a:xorg:xwayland::::::::
Vendors & Products		Xorg Xorg xserver Xorg xwayland
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-02-28T12:13:12.555Z

Updated: 2025-11-06T20:53:28.237Z

Reserved: 2024-01-02T21:57:08.796Z

Link: CVE-2024-21886

Vulnrichment

Updated: 2025-11-04T22:05:35.965Z

NVD

Status : Awaiting Analysis

Published: 2024-02-28T13:15:08.440

Modified: 2025-11-04T22:15:57.770

Link: CVE-2024-21886

Redhat

Severity : Important

Publid Date: 2024-01-16T00:00:00Z

Links: CVE-2024-21886 - Bugzilla

OpenCVE Enrichment

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object