PT-2026-42401 · Freebsd · Freebsd

Ao Wang

+6

·

Published

2026-05-21

·

Updated

2026-05-29

·

CVE-2026-45253

CVSS v3.1

8.4

High

VectorAV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions FreeBSD (affected versions not specified)
Description The ptrace(PT SC REMOTE) function failed to properly validate parameters for the syscall(2) and syscall(2) meta-system calls. This allows a user with debugging capabilities to trigger arbitrary code execution in the kernel, regardless of the target process's privileges. An unprivileged local user can exploit this to escalate privileges and potentially gain full control of the system.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-45253

Affected Products

Freebsd