Vulnerabilities > CVE-2022-23085 - Out-of-bounds Write vulnerability in Freebsd

CVSS 8.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

freebsd

CWE-787

NVD

Published: 2024-02-15

Updated: 2024-12-09

Summary

A user-provided integer option was passed to nmreq_copyin() without checking if it would overflow. This insufficient bounds checking could lead to kernel memory corruption. On systems configured to include netmap in their devfs_ruleset, a privileged process running in a jail can affect the host environment.

Vulnerable Configurations

Part	Description	Count
OS	Freebsd Freebsd Freebsd 13.0 Freebsd Freebsd 12.3 Freebsd Freebsd 12.0 Freebsd Freebsd 12.1 Freebsd Freebsd 12.2	67

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://security.freebsd.org/advisories/FreeBSD-SA-22:04.netmap.asc
https://security.freebsd.org/advisories/FreeBSD-SA-22:04.netmap.asc
https://security.netapp.com/advisory/ntap-20240322-0004/
https://security.netapp.com/advisory/ntap-20240322-0004/