Skip to main content

Openbsd CVE-2024-11149

MEDIUM
2024-12-06 9119a7d8-5eab-497f-8521-727c672e3725
6.2
CVSS 4.0 · Vendor: 9119a7d8-5eab-497f-8521-727c672e3725
Share

Severity by source

Vendor (9119a7d8-5eab-497f-8521-727c672e3725) PRIMARY
6.2 MEDIUM
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:X/V:X/RE:X/U:X

Primary rating from Vendor (9119a7d8-5eab-497f-8521-727c672e3725) · only source for this CVE.

CVSS VectorVendor: 9119a7d8-5eab-497f-8521-727c672e3725

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

1
CVE Published
Dec 06, 2024 - 02:15 cve.org
MEDIUM 6.2

DescriptionCVE.org

In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs.

AnalysisAI

In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs. Rated medium severity (CVSS 6.2), this vulnerability is low attack complexity.

Technical ContextAI

In OpenBSD 7.4 before errata 014, vmm(4) did not restore GDTR limits properly on Intel (VMX) CPUs. Affected products include: Openbsd.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2017-5850 HIGH POC
7.5 Mar 27

httpd in OpenBSD allows remote attackers to cause a denial of service (memory consumption) via a series of requests for

CVE-2019-19726 HIGH POC
7.8 Dec 12

OpenBSD through 6.6 allows local users to escalate to root because a check for LD_LIBRARY_PATH in setuid programs can be

CVE-2017-1000373 MEDIUM POC
6.5 Jun 19

The OpenBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N

CVE-2024-29937 CRITICAL POC
9.8 Apr 11

NFS in a BSD derived codebase, as used in OpenBSD through 7.4 and FreeBSD through 14.0-RELEASE, allows remote attackers

CVE-2020-16088 CRITICAL POC
9.8 Jul 28

iked in OpenIKED, as used in OpenBSD through 6.7, allows authentication bypass because ca.c has the wrong logic for chec

CVE-2019-19521 CRITICAL POC
9.8 Dec 05

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiu

CVE-2026-55706 HIGH POC
8.3 Jun 17

Authentication bypass in OpenBSD's sppp PAP handler (sppp_pap_input in sys/net/if_spppsubr.c) lets an adjacent attacker

CVE-2016-6240 HIGH POC
7.8 Mar 07

Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code

CVE-2016-6241 HIGH POC
7.8 Mar 07

Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with ke

CVE-2019-19522 HIGH POC
7.8 Dec 05

OpenBSD 6.6, in a non-default configuration where S/Key or YubiKey authentication is enabled, allows local users to beco

CVE-2019-19520 HIGH POC
7.8 Dec 05

xlock in OpenBSD 6.6 allows local users to gain the privileges of the auth group by providing a LIBGL_DRIVERS_PATH envir

CVE-2019-19519 HIGH POC
7.8 Dec 05

In OpenBSD 6.6, local users can use the su -L option to achieve any login class (often excluding root) because there is

Share

CVE-2024-11149 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy