Lucene search

CVE-2020-25584

🗓️ 07 Apr 2021 15:13:15Reported by freebsdType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 37 Views

FreeBSD superuser inside jail can cause race condition, leaking filesystem access outside jai

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2020-25584	7 Apr 202114:43	–	cvelist
Prion	Race condition	7 Apr 202115:15	–	prion
FreeBSD	FreeBSD -- jail escape possible by mounting over jail root	6 Apr 202100:00	–	freebsd
Tenable Nessus	FreeBSD : FreeBSD -- jail escape possible by mounting over jail root (a7b97d26-9792-11eb-b87a-901b0ef719ab)	14 Apr 202100:00	–	nessus
FreeBSD Advisory	FreeBSD-SA-21:10.jail_mount	6 Apr 202100:00	–	freebsd_advisory
CNVD	FreeBSD Competitive Conditions Vulnerability (CNVD-2021-36023)	12 Apr 202100:00	–	cnvd
NVD	CVE-2020-25584	7 Apr 202115:15	–	nvd

Nvd

Node

freebsd freebsdRange<11.4

freebsd freebsdRange12.0–12.2

freebsd freebsdMatch11.4-

freebsd freebsdMatch11.4beta1

freebsd freebsdMatch11.4p1

freebsd freebsdMatch11.4p2

freebsd freebsdMatch11.4p3

freebsd freebsdMatch11.4p4

freebsd freebsdMatch11.4p5

freebsd freebsdMatch11.4rc1

freebsd freebsdMatch11.4rc2

freebsd freebsdMatch12.2-

freebsd freebsdMatch12.2p1

freebsd freebsdMatch12.2p2

freebsd freebsdMatch13.0beta1

freebsd freebsdMatch13.0beta2

freebsd freebsdMatch13.0beta3

freebsd freebsdMatch13.0beta4

freebsd freebsdMatch13.0rc1

freebsd freebsdMatch13.0rc2

freebsd freebsdMatch13.0rc3

freebsd freebsdMatch13.0rc4

freebsd freebsdMatch13.0rc5

[
  {
    "product": "FreeBSD",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "FreeBSD 12.2-RELEASE before p6, 11.4-RELEASE before p9"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-21:10.jail_mount.asc
security	www.security.netapp.com/advisory/ntap-20210423-0009/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Apr 2021 15:15Current

7.4High risk

Vulners AI Score7.4

CVSS26.2

CVSS37.5

EPSS0.00038

CWE-362