Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Multiple issues in ctl(4) CAM Target Layer
Vulnerability Description
The ctl_request_sense function could expose up to three bytes of the kernel heap to userspace. Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process. A malicious iSCSI initiator could achieve remote code execution on the iSCSI target host.
CVSS Information
N/A
Vulnerability Type
跨界内存读
Vulnerability Title
FreeBSD 缓冲区错误漏洞
Vulnerability Description
FreeBSD是FreeBSD基金会的一套类Unix操作系统。 FreeBSD 存在缓冲区错误漏洞,该漏洞源于 ctl_request_sense 函数最多可以向用户空间公开三个字节的内核堆。
CVSS Information
N/A
Vulnerability Type
N/A