CVE-2020-7468
First published: Fri Mar 26 2021(Updated: )
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system sandbox, combined with capabilities available to an authenticated FTP user, can be used to escape the file system restriction configured in ftpchroot(5). Moreover, the bug allows a malicious client to gain root privileges.
Credit: secteam@freebsd.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FreeBSD FreeBSD | =11.3 | |
| FreeBSD FreeBSD | =11.3-p1 | |
| FreeBSD FreeBSD | =11.3-p10 | |
| FreeBSD FreeBSD | =11.3-p11 | |
| FreeBSD FreeBSD | =11.3-p12 | |
| FreeBSD FreeBSD | =11.3-p13 | |
| FreeBSD FreeBSD | =11.3-p2 | |
| FreeBSD FreeBSD | =11.3-p3 | |
| FreeBSD FreeBSD | =11.3-p4 | |
| FreeBSD FreeBSD | =11.3-p5 | |
| FreeBSD FreeBSD | =11.3-p6 | |
| FreeBSD FreeBSD | =11.3-p7 | |
| FreeBSD FreeBSD | =11.3-p8 | |
| FreeBSD FreeBSD | =11.3-p9 | |
| FreeBSD FreeBSD | =11.4 | |
| FreeBSD FreeBSD | =11.4-p1 | |
| FreeBSD FreeBSD | =11.4-p2 | |
| FreeBSD FreeBSD | =11.4-p3 | |
| FreeBSD FreeBSD | =12.1 | |
| FreeBSD FreeBSD | =12.1-p1 | |
| FreeBSD FreeBSD | =12.1-p2 | |
| FreeBSD FreeBSD | =12.1-p3 | |
| FreeBSD FreeBSD | =12.1-p4 | |
| FreeBSD FreeBSD | =12.1-p5 | |
| FreeBSD FreeBSD | =12.1-p6 | |
| FreeBSD FreeBSD | =12.1-p7 | |
| FreeBSD FreeBSD | =12.1-p8 | |
| FreeBSD FreeBSD | =12.1-p9 | |
| FreeBSD FreeBSD | =12.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-7468?
CVE-2020-7468 is a vulnerability in FreeBSD operating system that allows an authenticated FTP user to escape the file system sandbox.
What is the severity of CVE-2020-7468?
CVE-2020-7468 has a severity rating of 8.8 (Critical).
How does CVE-2020-7468 affect FreeBSD?
CVE-2020-7468 affects FreeBSD versions 11.3-p1 to 11.3-p13, 11.4-p1 to 11.4-p3, 12.1-p1 to 12.1-p9, and 12.2.
How can an attacker exploit CVE-2020-7468?
An attacker can exploit CVE-2020-7468 by leveraging a bug in the ftpd(8) implementation of the file system sandbox and using capabilities available to an authenticated FTP user.
How can I fix CVE-2020-7468?
To fix CVE-2020-7468, it is recommended to update to FreeBSD 12.2-STABLE r365772 or later, FreeBSD 11.4-STABLE r365773 or later, FreeBSD 12.1-RELEASE p10 or later, FreeBSD 11.4-RELEASE p4 or later, or FreeBSD 11.3-RELEASE p14 or later.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/freebsd
- canonical/freebsd freebsd
- version/freebsd freebsd/11.3
- version/freebsd freebsd/11.3-p1
- version/freebsd freebsd/11.3-p10
- version/freebsd freebsd/11.3-p11
- version/freebsd freebsd/11.3-p12
- version/freebsd freebsd/11.3-p13
- version/freebsd freebsd/11.3-p2
- version/freebsd freebsd/11.3-p3
- version/freebsd freebsd/11.3-p4
- version/freebsd freebsd/11.3-p5
- version/freebsd freebsd/11.3-p6
- version/freebsd freebsd/11.3-p7
- version/freebsd freebsd/11.3-p8
- version/freebsd freebsd/11.3-p9
- version/freebsd freebsd/11.4
- version/freebsd freebsd/11.4-p1
- version/freebsd freebsd/11.4-p2
- version/freebsd freebsd/11.4-p3
- version/freebsd freebsd/12.1
- version/freebsd freebsd/12.1-p1
- version/freebsd freebsd/12.1-p2
- version/freebsd freebsd/12.1-p3
- version/freebsd freebsd/12.1-p4
- version/freebsd freebsd/12.1-p5
- version/freebsd freebsd/12.1-p6
- version/freebsd freebsd/12.1-p7
- version/freebsd freebsd/12.1-p8
- version/freebsd freebsd/12.1-p9
- version/freebsd freebsd/12.2