Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple issues in ctl(4) CAM Target Layer
Vulnerability Description
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by userspace, allowing an arbitrary write to a limited amount of kernel help memory. Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process. A malicious iSCSI initiator could achieve remote code execution on the iSCSI target host.
CVSS Information
N/A
Vulnerability Type
特殊元素过滤不恰当
Vulnerability Title
FreeBSD 安全漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会的一套类Unix操作系统。 FreeBSD 存在安全漏洞,该漏洞源于 ctl_report_supported_opcodes 函数没有充分验证用户空间提供的字段,从而允许对有限数量的内核帮助内存进行任意写入。
CVSS Information
N/A
Vulnerability Type
N/A