CVE-2020-24718
25.09.2020, 04:23
bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user in a container on an Intel system, who can gain privileges by modifying VMCS_HOST_RIP.Enginsight
| Vendor | Product | Version |
|---|---|---|
| freebsd | freebsd | 𝑥 ≤ 11.2 |
| freebsd | freebsd | 11.3 |
| freebsd | freebsd | 11.3:p1 |
| freebsd | freebsd | 11.3:p10 |
| freebsd | freebsd | 11.3:p11 |
| freebsd | freebsd | 11.3:p12 |
| freebsd | freebsd | 11.3:p13 |
| freebsd | freebsd | 11.3:p2 |
| freebsd | freebsd | 11.3:p3 |
| freebsd | freebsd | 11.3:p4 |
| freebsd | freebsd | 11.3:p5 |
| freebsd | freebsd | 11.3:p6 |
| freebsd | freebsd | 11.3:p7 |
| freebsd | freebsd | 11.3:p8 |
| freebsd | freebsd | 11.3:p9 |
| freebsd | freebsd | 11.3:rc3 |
| freebsd | freebsd | 11.4 |
| freebsd | freebsd | 11.4:beta1 |
| freebsd | freebsd | 11.4:p1 |
| freebsd | freebsd | 11.4:p2 |
| freebsd | freebsd | 11.4:p3 |
| freebsd | freebsd | 11.4:rc1 |
| freebsd | freebsd | 11.4:rc2 |
| freebsd | freebsd | 12.0 |
| freebsd | freebsd | 12.0:p1 |
| freebsd | freebsd | 12.0:p10 |
| freebsd | freebsd | 12.0:p11 |
| freebsd | freebsd | 12.0:p12 |
| freebsd | freebsd | 12.0:p2 |
| freebsd | freebsd | 12.0:p3 |
| freebsd | freebsd | 12.0:p4 |
| freebsd | freebsd | 12.0:p5 |
| freebsd | freebsd | 12.0:p6 |
| freebsd | freebsd | 12.0:p7 |
| freebsd | freebsd | 12.0:p8 |
| freebsd | freebsd | 12.0:p9 |
| freebsd | freebsd | 12.1 |
| freebsd | freebsd | 12.1:p1 |
| freebsd | freebsd | 12.1:p2 |
| freebsd | freebsd | 12.1:p3 |
| freebsd | freebsd | 12.1:p4 |
| freebsd | freebsd | 12.1:p5 |
| freebsd | freebsd | 12.1:p6 |
| freebsd | freebsd | 12.1:p7 |
| freebsd | freebsd | 12.1:p8 |
| freebsd | freebsd | 12.1:p9 |
| omniosce | omnios | 𝑥 ≤ r151034 |
| netapp | clustered_data_ontap | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References