← Back

CVE-2024-32668

nvd nist
Published: Sep 5, 2024Modified: Nov 21, 2024

JSON object

Loading...
8.2
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Exploitability: 1.5 / Impact: 6.0
Source: NVD

Description

An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the heap, with data controlled by the caller. A malicious, privileged software running in a guest VM can exploit the vulnerability to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process.

Affected (25)

Products: Freebsd: Freebsd
Freebsd
1 product
Freebsd
Configuration A
25 vulnerable
Vulnerable SoftwareAffected Versions
Freebsd
Freebsd
From 13.0 to 13.3
Freebsd
Version 13.3
Freebsd
Version 13.3 p1
Freebsd
Version 13.3 p2
Freebsd
Version 13.3 p3
Freebsd
Version 13.3 p4
Freebsd
Version 13.3 p5
Freebsd
Version 13.4 beta3
Freebsd
Version 14.0
Freebsd
Version 14.0 beta5
Freebsd
Version 14.0 p1
Freebsd
Version 14.0 p2
Freebsd
Version 14.0 p3
Freebsd
Version 14.0 p4
Freebsd
Version 14.0 p5
Freebsd
Version 14.0 p6
Freebsd
Version 14.0 p7
Freebsd
Version 14.0 p8
Freebsd
Version 14.0 p9
Freebsd
Version 14.0 rc3
Freebsd
Version 14.0 rc4-p1
Freebsd
Version 14.1
Freebsd
Version 14.1 p1
Freebsd
Version 14.1 p2
Freebsd
Version 14.1 p3

Related CWEs

CWE-193
Off-by-one Error
A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

Source: secteam@freebsd.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.