Main Vulnerability Database Vulnerabilities #VU51949

#VU51949 Race condition in FreeBSD - CVE-2020-25584

Published: April 7, 2021

Vulnerability identifier: #VU51949

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2020-25584

CWE-ID: CWE-362

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
FreeBSD

Software vendor:
FreeBSD Foundation

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition between lookup of ".." and remounting a filesystem. A local administrator can change the root directory outside of the jail and gain full read and write access to all files and directories in the system.

Remediation

Install updates from vendor's website.

External links

https://www.freebsd.org/security/advisories/FreeBSD-SA-21:10.jail_mount.asc