vulnerability
FreeBSD: VID-E73C688B-F7E6-11EA-88F8-901B0EF719AB (CVE-2020-7467): FreeBSD -- bhyve SVM guest escape
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Sep 15, 2020 | Sep 17, 2020 | Apr 5, 2021 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Sep 15, 2020
Added
Sep 17, 2020
Modified
Apr 5, 2021
Description
Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.
From VID-E73C688B-F7E6-11EA-88F8-901B0EF719AB:
Problem Description:
A number of AMD virtualization instructions operate on host physical
addresses, are not subject to nested page table translation, and guest use of
these instructions was not trapped.
Impact:
From kernel mode a malicious guest can write to arbitrary host memory (with
some constraints), affording the guest full control of the host.
Solution(s)
freebsd-upgrade-base-11_3-release-p14freebsd-upgrade-base-11_4-release-p4freebsd-upgrade-base-12_1-release-p10
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.