U.S. CISA Adds Linux Kernel Flaws to Known Exploited Vulnerabilities Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added vulnerabilities in the Linux kernel to its catalog of known exploited vulnerabilities. The vulnerabilities, tracked under the numbers CVE-2024-53197 and CVE-2024-53150, have been included in CISA's Known Exploited Vulnerabilities (KEV) catalog. The vulnerability CVE-2024-53197, with a CVSS score of 7.8, resides in the ALSA USB-audio driver of the Linux kernel, notably affecting Extigy.