← voltar
CVE-2020-7456

CVE-2020-7456

EPSS 0.6%
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 0.6%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
09 jun 2020Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
In FreeBSD 12.1-STABLE before r361918, 12.1-RELEASE before p6, 11.4-STABLE before r361919, 11.3-RELEASE before p10, and 11.4-RC2 before p1, an invalid memory location may be used for HID items if the push/pop level is not restored within the processing of that HID item allowing an attacker with physical access to a USB port to be able to use a specially crafted USB device to gain kernel or user-space code execution.
Produtos afetados
n/a · FreeBSD

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:17.usb.aschttps://security.netapp.com/advisory/ntap-20200625-0005/