CVE-2021-29632
Last modified
CVE-2021-29632 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text is scrolling on the console, console data may overwrite data structures associated with the system console or other kernel memory.. EPSS estimates a 0.85% chance of exploitation in the next 30 days.
Description
In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text is scrolling on the console, console data may overwrite data structures associated with the system console or other kernel memory.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 12.2 |
| Freebsd | Freebsd | 13.0 |
References
- https://security.freebsd.org/advisories/FreeBSD-SA-22:01.vt.ascMitigation, Vendor Advisory
- https://security.netapp.com/advisory/ntap-20220217-0004/Third Party Advisory
- https://security.freebsd.org/advisories/FreeBSD-SA-22:01.vt.ascMitigation, Vendor Advisory
- https://security.netapp.com/advisory/ntap-20220217-0004/Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2021-29632?
How severe is CVE-2021-29632?
How do I fix CVE-2021-29632?
Are you affected by CVE-2021-29632?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST