An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to obtain superuser privileges.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HFreebsd
OSFreebsd13.514.314.415.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
Related vulnerabilities
CVE-2024-43102CRITICAL10.0PL ✓ten sam produkt
FreeBSD UMTX_SHM_DESTROY: use-after-free umożliwiający RCE lub ucieczkę z sandboxa
CVE-2024-29937CRITICAL9.8PL ✓ten sam produkt
RCE w implementacji NFS w OpenBSD i FreeBSD — zdalne wykonanie kodu
CVE-2022-23088CRITICAL9.8PL ✓ten sam produkt
FreeBSD: przepełnienie bufora w obsłudze beacon 802.11s prowadzące do RCE
CVE-2023-5941CRITICAL9.8ten sam produkt
In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5...
CVE-2023-3326CRITICAL9.8ten sam produkt
pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket...