Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, does not validate the address provided as part of a memrw command (read_* or write_*) by a guest through a grub2.cfg file. This allows an untrusted guest to perform arbitrary read or write operations in the context of the grub-bhyve process, resulting in code execution as root on the host OS.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD bhyve 安全漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会的一套类Unix操作系统。bhyve是使用在其中的一个虚拟机管理程序。 FreeBSD bhyve 525916 2020-02-12之前版本中的‘grub2-bhyve’端口存在安全漏洞,该漏洞源于该端口没有正确验证所提升的地址。攻击者可利用该漏洞以root身份执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A