CVE-2021-29628
HIGHFreeBSD Incorrect Authorization via SMAP Protection Bypass
Title source: llmDescription
In FreeBSD 13.0-STABLE before n245764-876ffe28796c, 12.2-STABLE before r369857, 13.0-RELEASE before p1, and 12.2-RELEASE before p7, a system call triggering a fault could cause SMAP protections to be disabled for the duration of the system call. This weakness could be combined with other kernel bugs to craft an exploit.
References (2)
Core 2
Core References
Exploit, Vendor Advisory x_refsource_misc
https://security.FreeBSD.org/advisories/FreeBSD-SA-21:11.smap.asc
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20210713-0002/
Scores
CVSS v3
7.5
EPSS
0.0019
EPSS Percentile
40.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-863
Status
published
Products (2)
freebsd/freebsd
12.2 (8 CPE variants)
freebsd/freebsd
13.0 (5 CPE variants)
Published
May 28, 2021
Tracked Since
Feb 18, 2026