Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-23086
HistoryFeb 15, 2024 - 5:15 a.m.

Design/Logic Flaw

2024-02-1505:15:00
PRIOn knowledge base
www.prio-n.com
3
design logic flaw
heap data overwrite
privilege escalation
root access
operator group
nvd

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.9%

JSON

Handlers for *_CFG_PAGE read / write ioctls in the mpr, mps, and mpt drivers allocated a buffer of a caller-specified size, but copied to it a fixed size header. Other heap content would be overwritten if the specified size was too small.

Users with access to the mpr, mps or mpt device node may overwrite heap data, potentially resulting in privilege escalation. Note that the device node is only accessible to root and members of the operator group.

Related

nessus 1
zdi 2
freebsd_advisory 1
freebsd 1
cve 1
nessus
nessus
FreeBSD : FreeBSD -- mpr/mps/mpt driver ioctl heap out-of-bounds write (703c4761-b61d-11ec-9ebc-1c697aa5a594)
2022-04-07 00:00:00
zdi
zdi
FreeBSD Kernel MPT Heap-based Buffer Overflow Privilege Escalation Vulnerability
2022-09-20 00:00:00
FreeBSD Kernel MPT Heap-based Buffer Overflow Privilege Escalation Vulnerability
2022-09-20 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:06.ioctl
2022-04-06 00:00:00
freebsd
freebsd
FreeBSD -- mpr/mps/mpt driver ioctl heap out-of-bounds write
2022-04-06 00:00:00
cve
cve
CVE-2022-23086
2024-02-15 05:15:09

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

26.9%

JSON
Related for PRION:CVE-2022-23086
nessus1zdi2freebsd_advisory1freebsd1cve1