vulnerability

FreeBSD: VID-e73c688b-f7e6-11ea-88f8-901b0ef719ab (CVE-2020-7467): FreeBSD -- bhyve SVM guest escape

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Sep 16, 2020	Sep 17, 2020	Dec 10, 2025

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Sep 16, 2020

Added

Sep 17, 2020

Modified

Dec 10, 2025

Description

Problem Description: A number of AMD virtualization instructions operate on host physical addresses, are not subject to nested page table translation, and guest use of these instructions was not trapped. Impact: From kernel mode a malicious guest can write to arbitrary host memory (with some constraints), affording the guest full control of the host.

Solutions

freebsd-upgrade-base-12_1-release-p10freebsd-upgrade-base-11_4-release-p4freebsd-upgrade-base-11_3-release-p14

References

CVE-2020-7467
https://attackerkb.com/topics/CVE-2020-7467
CWE-269

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today