5 matches found
CVE-2024-25940
creationtimestamp| type| source ---|---|--- 2024-03-06 09:06:33+00:00| seen| https://t.me/ctinow/201133...
CVE-2024-25940
bhyveload -h may be used to grant loader access to the directory tree on the host. Affected versions of bhyveload8 do not make any attempt to restrict loader's access to , allowing the loader to read any file the host user has access to. In the bhyveload8 model, the host supplies a userboot.so to...
CVE-2024-25940 bhyveload(8) host file access
bhyveload -h may be used to grant loader access to the directory tree on the host. Affected versions of bhyveload8 do not make any attempt to restrict loader's access to , allowing the loader to read any file the host user has access to. In the bhyveload8 model, the host supplies a userboot.so to...
CVE-2024-25940 bhyveload(8) host file access
bhyveload -h may be used to grant loader access to the directory tree on the host. Affected versions of bhyveload8 do not make any attempt to restrict loader's access to , allowing the loader to read any file the host user has access to. In the bhyveload8 model, the host supplies a userboot.so to...
CVE-2024-25940
CVE-2024-25940 concerns bhyveload(8) on FreeBSD where using -h grants loader access to the host’s directory tree. Affected bhyveload versions do not restrict access, enabling the loader to read any file the host user can access, potentially allowing exfiltration of sensitive data from the host (...