FreeBSD 11.x < 11.2-RELEASE-p12 / 12.x < 12.0-RELEASE-p7 Privilege escalation in cd(4) driver

high Nessus Plugin ID 126647

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The version of the FreeBSD kernel running on the remote host is 11.x prior to 11.2-RELEASE-p11 or 12.x prior to 12.0-RELEASE-p7. It is, therefore, affected by a privilege escalation vulnerability in the cd(4) driver. A local attacker with read access to a cd(4) device can exploit this to gain root privileges on the system.

Solution

Upgrade to the appropriate FreeBSD version.

See Also

http://www.nessus.org/u?90341ab9

Plugin Details

Severity: High

ID: 126647

File Name: freebsd_sa-19-11_cd_ioctl.nasl

Version: 1.2

Type: local

Published: 7/15/2019

Updated: 5/10/2024

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2019-5602

CVSS v3

Risk Factor: High

Base Score: 8.8

Temporal Score: 8.2

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 7/2/2019

Vulnerability Publication Date: 7/2/2019

Exploitable With

Core Impact

Reference Information

CVE: CVE-2019-5602