CVE-2021-29631

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2021-29631
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO-based device models in bhyve failed to handle errors when fetching I/O descriptors. A malicious guest may cause the device model to operate on uninitialized I/O vectors leading to memory corruption, crashing of the bhyve process, and possibly arbitrary code execution in the bhyve process.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:13.bhyve.asc Vendor Advisory
https://security.netapp.com/advisory/ntap-20210923-0004/ Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:freebsd:freebsd:11.4:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p11:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p12:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p13:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p3:*:*:*:*:*:*
History

14 Dec 2021, 21:37

Type Values Removed Values Added
References (CONFIRM) https://security.netapp.com/advisory/ntap-20210923-0004/ - (CONFIRM) https://security.netapp.com/advisory/ntap-20210923-0004/ - Third Party Advisory

23 Sep 2021, 13:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20210923-0004/ -

10 Sep 2021, 13:19

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : 7.2
v3 : 7.8
CPE cpe:2.3:o:freebsd:freebsd:11.4:p7:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p13:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p4:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p2:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p3:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p11:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p6:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p10:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p12:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p9:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:-:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p8:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p5:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:11.4:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:13.0:p1:*:*:*:*:*:*
cpe:2.3:o:freebsd:freebsd:12.2:p7:*:*:*:*:*:*
References (MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-21:13.bhyve.asc - (MISC) https://security.FreeBSD.org/advisories/FreeBSD-SA-21:13.bhyve.asc - Vendor Advisory
CWE CWE-908

30 Aug 2021, 18:38

Type Values Removed Values Added
New CVE
Information

Published : 2021-08-30 18:15

Updated : 2023-12-10 13:55

NVD link : CVE-2021-29631

Mitre link : CVE-2021-29631

CVE.ORG link : CVE-2021-29631

JSON object : View

Products Affected

freebsd

  • freebsd
CWE
CWE-908

Use of Uninitialized Resource