Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistFreebsdCVELIST:CVE-2020-7468
HistoryMar 26, 2021 - 8:27 p.m.

CVE-2020-7468

2021-03-2620:27:13
freebsd
www.cve.org
6
freebsd 12.2-stable
11.4-stable
ftp user
file system restriction
ftpd(8)
sandbox
root privileges

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

45.9%

JSON

In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.

CNA Affected

[
  {
    "product": "FreeBSD",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "FreeBSD 12.1-RELEASE before p10, 11.4-RELEASE before p4, 11.3-RELEASE before p14"
      }
    ]
  }
]

Related

nvd 1
prion 1
freebsd_advisory 1
zdi 1
nessus 1
cve 1
freebsd 1
nvd
nvd
CVE-2020-7468
2021-03-26 21:15:13
prion
prion
Information disclosure
2021-03-26 21:15:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-20:30.ftpd
2020-09-15 00:00:00
zdi
zdi
FreeBSD FTPD Improper Handling of Exceptional Conditions Privilege Escalation Vulnerability
2020-12-15 00:00:00
nessus
nessus
FreeBSD : FreeBSD -- ftpd privilege escalation via ftpchroot feature (6d334fdb-f7e7-11ea-88f8-901b0ef719ab)
2020-09-17 00:00:00
cve
cve
CVE-2020-7468
2021-03-26 21:15:13
freebsd
freebsd
FreeBSD -- ftpd privilege escalation via ftpchroot feature
2020-09-15 00:00:00

AI Score

8.8

Confidence

High

EPSS

0.001

Percentile

45.9%

JSON
Related for CVELIST:CVE-2020-7468
nvd1prion1freebsd_advisory1zdi1nessus1cve1freebsd1