CVE-2024-41928

CVE-2024-41928: bhyve(8) privileged guest escape via TPM device passthrough

Vendor Freebsd
Product FreeBSD
Weakness CWE-125
Published September 5, 2024
Last update September 20, 2024

CVSS base score

What the vulnerability does

01Description

Malicious software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process.

Key dates

02Disclosure timeline

September 5, 2024 CVE published
September 20, 2024 Record updated