Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFreebsdCVELIST:CVE-2020-7453
HistoryApr 28, 2020 - 11:36 p.m.

CVE-2020-7453

2020-04-2823:36:45
freebsd
www.cve.org

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r359020, and 11.3-RELEASE before 11.3-RELEASE-p7, a missing null termination check in the jail_set configuration option “osrelease” may return more bytes with a subsequent jail_get system call allowing a malicious jail superuser with permission to create nested jails to read kernel memory.

CNA Affected

[
  {
    "product": "FreeBSD",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r359020, 11.3-RELEASE before 11.3-RELEASE-p7"
      }
    ]
  }
]

Related

freebsd_advisory 1
nvd 1
debiancve 1
freebsd 1
prion 1
cve 1
nessus 1
freebsd_advisory
freebsd_advisory
FreeBSD-SA-20:08.jail
2020-03-19 00:00:00
nvd
nvd
CVE-2020-7453
2020-04-29 00:15:12
debiancve
debiancve
CVE-2020-7453
2020-04-29 00:15:12
freebsd
freebsd
FreeBSD -- Kernel memory disclosure with nested jails
2020-03-19 00:00:00
prion
prion
Null pointer dereference
2020-04-29 00:15:00
cve
cve
CVE-2020-7453
2020-04-29 00:15:12
nessus
nessus
FreeBSD : FreeBSD -- Kernel memory disclosure with nested jails (6b90acba-6a0a-11ea-92ab-00163e433440)
2020-03-20 00:00:00

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for CVELIST:CVE-2020-7453
freebsd_advisory1nvd1debiancve1freebsd1prion1cve1nessus1