ГлавнаяУязвимости → CVE-2026-45253
8.4высокая

CVE-2026-45253

Описание

ptrace(PT_SC_REMOTE) failed to properly validate parameters for the syscall(2) and __syscall(2) meta-system calls. As a result, a user with the ability to debug a process may trigger arbitrary code execution in the kernel, even if the target process has no special privileges. The missing validation allows an unprivileged local user to escalate privileges, potentially gaining full control of the affected system.

Затрагиваемое ПО
Freebsd Freebsd
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://security.freebsd.org/advisories/FreeBSD-SA-26:21.ptrace.asc