CVE-2024-6759

Published: Aug 11, 2024

Modified: Aug 16, 2024

PUBLISHED

Description

When mounting a remote filesystem using NFS, the kernel did not sanitize remotely provided filenames for the path separator character, "/". This allows readdir(3) and related functions to return filesystem entries with names containing additional path components. The lack of validation described above gives rise to a confused deputy problem. For example, a program copying files from an NFS mount could be tricked into copying from outside the intended source directory, and/or to a location outside the intended destination directory.

Vendor	Product	Versions
FreeBSD	FreeBSD	affected `14.1-RELEASE - < p3` affected `14.0-RELEASE - < p9` affected `13.3-RELEASE - < p5`

References

https://security.freebsd.org/advisories/FreeBSD-SA-24:07.nfsclient.asc

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-6759

Description

Affected Products

References