FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO permission bitmap used to allow user access to certain hardware, which allows local users to bypass intended access restrictions to cause a denial of service, obtain sensitive information, and possibly gain privileges.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HAmd Amd64
HWAmdwszystkie wersjeFreebsd
OSFreebsd5.0 – 5.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
Related vulnerabilities
CVE-2024-43102CRITICAL10.0PL ✓ten sam produkt
FreeBSD UMTX_SHM_DESTROY: use-after-free umożliwiający RCE lub ucieczkę z sandboxa
CVE-2024-29937CRITICAL9.8PL ✓ten sam produkt
RCE w implementacji NFS w OpenBSD i FreeBSD — zdalne wykonanie kodu
CVE-2022-23088CRITICAL9.8PL ✓ten sam produkt
FreeBSD: przepełnienie bufora w obsłudze beacon 802.11s prowadzące do RCE
CVE-2023-5941CRITICAL9.8ten sam produkt
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5...
CVE-2023-3326CRITICAL9.8ten sam produkt
pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket...