Vulnerabilities > CVE-2024-32668 - Out-of-bounds Write vulnerability in Freebsd

CVSS 8.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

freebsd

CWE-787

NVD

Published: 2024-09-05

Updated: 2024-09-05

Summary

An insufficient boundary validation in the USB code could lead to an out-of-bounds write on the heap, with data controlled by the caller. A malicious, privileged software running in a guest VM can exploit the vulnerability to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process.

Vulnerable Configurations

Part	Description	Count
OS	Freebsd Freebsd Freebsd 14.0 Freebsd Freebsd 14.1 Freebsd Freebsd 13.3 Freebsd Freebsd 13.0 Freebsd Freebsd 13.1 Freebsd Freebsd 13.2 Freebsd Freebsd 13.4	74

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://security.freebsd.org/advisories/FreeBSD-SA-24:12.bhyve.asc