vulnerability

FreeBSD: VID-bba850fd-770e-11eb-b87a-901b0ef719ab (CVE-2020-25582): FreeBSD -- jail_attach(2) relies on the caller to change the cwd

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:S/C:C/I:C/A:N)	Feb 25, 2021	Feb 25, 2021	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:C/I:C/A:N)

Published

Feb 25, 2021

Added

Feb 25, 2021

Modified

Dec 10, 2025

Description

Problem Description: When a process, such as jexec(8) or killall(1), calls jail_attach(2) to enter a jail, the jailed root can attach to it using ptrace(2) before the current working directory is changed. Impact: A process with superuser privileges running inside a jail could change the root directory outside of the jail, thereby gaining full read and writing access to all files and directories in the system.

Solutions

freebsd-upgrade-base-12_2-release-p4freebsd-upgrade-base-11_4-release-p8

References

CVE-2020-25582
https://attackerkb.com/topics/CVE-2020-25582
CWE-362

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today