CVE-2024-47742 | Linux Kernel up to 6.11.1 firmware_loader lpfc_sli4_request_firmware_update path traversal
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.11.1. Affected is the function lpfc_sli4_request_firmware_update of the component firmware_loader. The manipulation leads to path traversal.
This vulnerability is traded as CVE-2024-47742. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.