CVE-2020-7461

In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
freebsdCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
freebsdfreebsd
11.3
freebsdfreebsd
11.3:p1
freebsdfreebsd
11.3:p10
freebsdfreebsd
11.3:p11
freebsdfreebsd
11.3:p12
freebsdfreebsd
11.3:p2
freebsdfreebsd
11.3:p3
freebsdfreebsd
11.3:p4
freebsdfreebsd
11.3:p5
freebsdfreebsd
11.3:p6
freebsdfreebsd
11.3:p7
freebsdfreebsd
11.3:p8
freebsdfreebsd
11.3:p9
freebsdfreebsd
11.4
freebsdfreebsd
11.4:p1
freebsdfreebsd
11.4:p2
freebsdfreebsd
12.1
freebsdfreebsd
12.1:p1
freebsdfreebsd
12.1:p2
freebsdfreebsd
12.1:p3
freebsdfreebsd
12.1:p4
freebsdfreebsd
12.1:p5
freebsdfreebsd
12.1:p6
freebsdfreebsd
12.1:p7
freebsdfreebsd
12.1:p8
siemenssimatic_rf350m_firmware
*
siemenssimatic_rf650m_firmware
*
𝑥
= Vulnerable software versions