CVE-2020-7461
26.03.2021, 21:15
In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input related to handling of DHCP option 119 resulting a heap overflow. The heap overflow could in principle be exploited to achieve remote code execution. The affected process runs with reduced privileges in a Capsicum sandbox, limiting the immediate impact of an exploit.Enginsight
Vendor | Product | Version |
---|---|---|
freebsd | freebsd | 11.3 |
freebsd | freebsd | 11.3:p1 |
freebsd | freebsd | 11.3:p10 |
freebsd | freebsd | 11.3:p11 |
freebsd | freebsd | 11.3:p12 |
freebsd | freebsd | 11.3:p2 |
freebsd | freebsd | 11.3:p3 |
freebsd | freebsd | 11.3:p4 |
freebsd | freebsd | 11.3:p5 |
freebsd | freebsd | 11.3:p6 |
freebsd | freebsd | 11.3:p7 |
freebsd | freebsd | 11.3:p8 |
freebsd | freebsd | 11.3:p9 |
freebsd | freebsd | 11.4 |
freebsd | freebsd | 11.4:p1 |
freebsd | freebsd | 11.4:p2 |
freebsd | freebsd | 12.1 |
freebsd | freebsd | 12.1:p1 |
freebsd | freebsd | 12.1:p2 |
freebsd | freebsd | 12.1:p3 |
freebsd | freebsd | 12.1:p4 |
freebsd | freebsd | 12.1:p5 |
freebsd | freebsd | 12.1:p6 |
freebsd | freebsd | 12.1:p7 |
freebsd | freebsd | 12.1:p8 |
siemens | simatic_rf350m_firmware | * |
siemens | simatic_rf650m_firmware | * |
𝑥
= Vulnerable software versions
Common Weakness Enumeration