EUVD-2026-39962

🗓️ 27 Jun 2026 08:50:56Reported by EUVDType

Unprivileged users can read and write kernel memory via /dev/dsp due to a 64-to-32 bit offset overflow, enabling privilege escalation or DoS.

Reporter	Title	Published	Views	Family All 10
FreeBSD	FreeBSD -- Multiple vulnerabilities in the sound(4) mmap path	9 Jun 202600:00	–	freebsd
ATTACKERKB	CVE-2026-45258	27 Jun 202608:50	–	attackerkb
Circl	CVE-2026-45258	27 Jun 202610:16	–	circl
CVE	CVE-2026-45258	27 Jun 202608:50	–	cve
Cvelist	CVE-2026-45258 Multiple vulnerabilities in the sound(4) mmap path	27 Jun 202608:50	–	cvelist
FreeBSD Advisory	FreeBSD-SA-26:27.sound	9 Jun 202600:00	–	freebsd_advisory
Tenable Nessus	FreeBSD : FreeBSD -- Multiple vulnerabilities in the sound(4) mmap path (253188dd-6473-11f1-958d-bc241121aa0a)	11 Jun 202600:00	–	nessus
NVD	CVE-2026-45258	27 Jun 202609:16	–	nvd
Packet Storm News	FreeBSD Security Advisory - FreeBSD-SA-26:27.sound	9 Jun 202600:00	–	packetstormnews
Positive Technologies	PT-2026-53060	27 Jun 202600:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "bf7883c3-adab-3283-922d-f6550d0f9cbe",
        "vendor": {
          "name": "FreeBSD"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "29c28647-8601-3949-aeb1-4965494bdd9e",
        "product": {
          "name": "FreeBSD",
          "vendor": {
            "name": "FreeBSD"
          }
        },
        "product_version": "14.4-RELEASE <p6"
      },
      {
        "id": "a60b133b-ec77-34a7-9918-04125525e90b",
        "product": {
          "name": "FreeBSD",
          "vendor": {
            "name": "FreeBSD"
          }
        },
        "product_version": "14.3-RELEASE <p15"
      },
      {
        "id": "cfd0ca69-59c9-3dc0-9173-376b996fe231",
        "product": {
          "name": "FreeBSD",
          "vendor": {
            "name": "FreeBSD"
          }
        },
        "product_version": "15.0-RELEASE <p10"
      }
    ]
  }
]

Source	Link
security	www.security.freebsd.org/advisories/FreeBSD-SA-26:27.sound.asc

27 Jun 2026 08:50Current

6Medium risk

Vulners AI Score6