EUVD-2023-44153

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Buffer overflow in fwctl driver allows code execution on host from guest VM due to bug in state machine

Reporter	Title	Published	Views	Family All 10
FreeBSD	FreeBSD -- bhyve privileged guest escape via fwctl	1 Aug 202300:00	–	freebsd
CNNVD	FreeBSD Security Vulnerabilities	1 Aug 202300:00	–	cnnvd
CVE	CVE-2023-3494	1 Aug 202322:13	–	cve
Cvelist	CVE-2023-3494 bhyve privileged guest escape via fwctl	1 Aug 202322:13	–	cvelist
FreeBSD Advisory	FreeBSD-SA-23:07.bhyve	1 Aug 202300:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- bhyve privileged guest escape via fwctl (ab437561-47c0-11ee-8e38-002590c1f29c)	31 Aug 202300:00	–	nessus
NVD	CVE-2023-3494	1 Aug 202323:15	–	nvd
Prion	Buffer overflow	1 Aug 202323:15	–	prion
RedhatCVE	CVE-2023-3494	14 Feb 202512:44	–	redhatcve
Vulnrichment	CVE-2023-3494 bhyve privileged guest escape via fwctl	1 Aug 202322:13	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "e964a8ef-cc75-3e77-acd3-1725aa810aab",
        "vendor": {
          "name": "FreeBSD"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "28c2d8cb-0492-3169-b2bd-702e5c016aad",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "13.2-RELEASE <13.2-RELEASE-p2"
      },
      {
        "id": "579db487-1a95-3f6c-9082-ebb329ae22af",
        "product": {
          "name": "FreeBSD"
        },
        "product_version": "13.1-RELEASE <13.1-RELEASE-p9"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-23:07.bhyve.asc
security	www.security.netapp.com/advisory/ntap-20230831-0006/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-3494

03 Oct 2025 20:07Current

8.4High risk

Vulners AI Score8.4

CVSS 3.18.8

EPSS0.00151

SSVC