CVE-2023-0751

🗓️ 08 Feb 2023 19:25:01Reported by freebsdType

GELI allows silent use of NULL key as user key file, allowing trivial recovery of master ke

Reporter	Title	Published	Views	Family All 10
FreeBSD	FreeBSD -- GELI silently omits the keyfile if read from stdin	8 Feb 202300:00	–	freebsd
Circl	CVE-2023-0751	8 Feb 202322:35	–	circl
CNNVD	GELI 安全漏洞	8 Feb 202300:00	–	cnnvd
Cvelist	CVE-2023-0751 GELI silently omits the keyfile if read from stdin	8 Feb 202319:25	–	cvelist
EUVD	EUVD-2023-12769	3 Oct 202520:07	–	euvd
FreeBSD Advisory	FreeBSD-SA-23:01.geli	8 Feb 202300:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- GELI silently omits the keyfile if read from stdin (3fcab88b-47bc-11ee-8e38-002590c1f29c)	31 Aug 202300:00	–	nessus
NVD	CVE-2023-0751	8 Feb 202320:15	–	nvd
Prion	Design/Logic Flaw	8 Feb 202320:15	–	prion
Vulnrichment	CVE-2023-0751 GELI silently omits the keyfile if read from stdin	8 Feb 202319:25	–	vulnrichment

NVD

Node

freebsd freebsdMatch12.3-

freebsd freebsdMatch12.3p1

freebsd freebsdMatch12.3p2

freebsd freebsdMatch12.3p3

freebsd freebsdMatch12.3p4

freebsd freebsdMatch12.3p5

freebsd freebsdMatch12.4-

freebsd freebsdMatch12.4rc2-p1

freebsd freebsdMatch12.4rc2-p2

freebsd freebsdMatch13.1-

freebsd freebsdMatch13.1b1-p1

freebsd freebsdMatch13.1b2-p2

freebsd freebsdMatch13.1p1

freebsd freebsdMatch13.1p2

freebsd freebsdMatch13.1p3

freebsd freebsdMatch13.1p4

freebsd freebsdMatch13.1p5

freebsd freebsdMatch13.1rc1-p1

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "geli"
    ],
    "product": "FreeBSD",
    "vendor": "FreeBSD",
    "versions": [
      {
        "lessThan": "13.1-RELEASE-p6",
        "status": "affected",
        "version": "13.1-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "12.4-RELEASE-p1",
        "status": "affected",
        "version": "12.4-RELEASE",
        "versionType": "release"
      },
      {
        "lessThan": "12.3-RELEASE-p11",
        "status": "affected",
        "version": "12.3-RELEASE",
        "versionType": "release"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-23:01.geli.asc
security	www.security.netapp.com/advisory/ntap-20230316-0004/

25 Mar 2025 14:15Current

6.4Medium risk

Vulners AI Score6.4

CVSS 3.16.5

EPSS0.00384

SSVC

CWE-20