Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveFreebsdCVE-2020-7461
HistoryMar 26, 2021 - 9:15 p.m.

CVE-2020-7461

2021-03-2621:15:13
CWE-787
freebsd
web.nvd.nist.gov
79
4
freebsd
dhclient
heap overflow
remote code execution
cve-2020-7461
security vulnerability

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

7.7

Confidence

High

EPSS

0.005

Percentile

76.0%

JSON

In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit.

Affected configurations

Nvd
Node
freebsdfreebsdMatch11.3-
OR
freebsdfreebsdMatch11.3p1
OR
freebsdfreebsdMatch11.3p10
OR
freebsdfreebsdMatch11.3p11
OR
freebsdfreebsdMatch11.3p12
OR
freebsdfreebsdMatch11.3p2
OR
freebsdfreebsdMatch11.3p3
OR
freebsdfreebsdMatch11.3p4
OR
freebsdfreebsdMatch11.3p5
OR
freebsdfreebsdMatch11.3p6
OR
freebsdfreebsdMatch11.3p7
OR
freebsdfreebsdMatch11.3p8
OR
freebsdfreebsdMatch11.3p9
OR
freebsdfreebsdMatch11.4-
OR
freebsdfreebsdMatch11.4p1
OR
freebsdfreebsdMatch11.4p2
OR
freebsdfreebsdMatch12.1-
OR
freebsdfreebsdMatch12.1p1
OR
freebsdfreebsdMatch12.1p2
OR
freebsdfreebsdMatch12.1p3
OR
freebsdfreebsdMatch12.1p4
OR
freebsdfreebsdMatch12.1p5
OR
freebsdfreebsdMatch12.1p6
OR
freebsdfreebsdMatch12.1p7
OR
freebsdfreebsdMatch12.1p8
Node
siemenssimatic_rf350mMatch-
AND
siemenssimatic_rf350m_firmware
Node
siemenssimatic_rf650m_firmware
AND
siemenssimatic_rf650mMatch-
VendorProductVersionCPE
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:-:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p1:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p10:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p11:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p12:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p2:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p3:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p4:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p5:*:*:*:*:*:*
freebsdfreebsd11.3cpe:2.3:o:freebsd:freebsd:11.3:p6:*:*:*:*:*:*
Rows per page:
1-10 of 291

CNA Affected

[
  {
    "product": "FreeBSD",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "FreeBSD 12.1-RELEASE before p9, 11.4-RELEASE before p3, 11.3-RELEASE before p13"
      }
    ]
  }
]

Social References

More

Related

ics 1
cvelist 1
freebsd 1
nessus 2
prion 1
githubexploit 1
nvd 1
freebsd_advisory 1
f5 1
threatpost 1
ics
ics
Siemens SIMATIC RFID
2021-09-14 12:00:00
cvelist
cvelist
CVE-2020-7461
2021-03-26 20:55:08
freebsd
freebsd
FreeBSD -- dhclient heap overflow
2020-09-02 00:00:00
nessus
nessus
Juniper Junos OS Vulnerability (JSA69496)
2023-07-20 00:00:00
FreeBSD : FreeBSD -- dhclient heap overflow (762b7d4a-ec19-11ea-88f8-901b0ef719ab)
2020-09-04 00:00:00
prion
prion
Heap overflow
2021-03-26 21:15:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Freebsd
2021-04-14 20:37:38
nvd
nvd
CVE-2020-7461
2021-03-26 21:15:13
freebsd_advisory
freebsd_advisory
FreeBSD-SA-20:26.dhclient
2020-09-02 00:00:00
f5
f5
K70746705 : Multiple NAME:WRECK vulnerabilities
2021-04-15 00:00:00
threatpost
threatpost
How the NAME:WRECK Bugs Impact Consumers, Businesses
2021-04-13 21:03:41

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

7.7

Confidence

High

EPSS

0.005

Percentile

76.0%

JSON
Related for CVE-2020-7461
ics1cvelist1freebsd1nessus2prion1githubexploit1nvd1freebsd_advisory1f51threatpost1