CVE-2024-41928

Malicious software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process.

CVSS v3 8.4 HIGH

8.4^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://security.freebsd.org/advisories/FreeBSD-SA-24:10.bhyve.asc
https://security.netapp.com/advisory/ntap-20240920-0009/

Configurations

No configuration.

History

21 Nov 2024, 09:33

Type	Values Removed	Values Added
References		() https://security.netapp.com/advisory/ntap-20240920-0009/ -

06 Sep 2024, 17:35

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.4

05 Sep 2024, 12:53

Type	Values Removed	Values Added
Summary		(es) El software malintencionado que se ejecuta en una máquina virtual invitada puede aprovechar el desbordamiento del búfer para lograr la ejecución de código en el host en el proceso de espacio de usuario bhyve, que normalmente se ejecuta como raíz. Tenga en cuenta que bhyve se ejecuta en un entorno aislado de Capsicum, por lo que el código malintencionado está limitado por las capacidades disponibles para el proceso bhyve.

05 Sep 2024, 04:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-09-05 04:15

Updated : 2024-11-21 09:33

NVD link : CVE-2024-41928

Mitre link : CVE-2024-41928

CVE.ORG link : CVE-2024-41928

JSON object : View

Products Affected

No product.

CWE

CWE-125

Out-of-bounds Read

CWE-787

Out-of-bounds Write

CWE-1285

Improper Validation of Specified Index, Position, or Offset in Input

8.4 /10