The flaw, tracked as CVE-2024-5035, earned the highest possible severity rating of 10.0 under the Common Vulnerability Scoring System (CVSS). Vulnerabilities scoring 10.0 are extremely rare – most severe bugs max out at 9.8, so this one’s about as bad as it gets.