CVE-2019-15875

Published Feb 18, 2020

Last updated 5 years ago

CVSS low 3.3

Overview

Description: In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r354735, and 11.3-RELEASE before 11.3-RELEASE-p6, due to incorrect initialization of a stack data structure, core dump files may contain up to 20 bytes of kernel data previously stored on the stack.
Source: secteam@freebsd.org
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 3.3
Impact score: 1.4
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Severity: LOW

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-665

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F35957CE-AF9F-40CA-BDD1-FA6A0E73783F"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA929713-B797-494A-853D-C121D9D69519"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C3D8EDC-91D3-45B2-AC1D-EF4346D4A714"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:p3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EA5006FF-06A5-4D95-BF5B-29F26248D11F"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A705031B-FD63-4076-B92E-E826E11D7111"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:11.3:p5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11C1EFB1-68E5-45F4-A7E1-744574F290D1"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "826B53C2-517F-4FC6-92E8-E7FCB24F91B4"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "93F10A46-AEF2-4FDD-92D6-0CF07B70F986"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C7B8FCA-2170-469A-B6D6-2C6AB254F20F"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p11:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E94067A1-5C68-4401-A7B6-29B4FE553733"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87EE567B-7604-41CC-B0A7-B51255D4C240"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E1AD57A9-F53A-4E40-966E-F2F50852C5E4"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4029113-130F-4A33-A8A0-BC3E74000378"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "46C5A6FD-7BBF-4E84-9895-8EE14DC846E4"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "882669AB-BCFC-4517-A3E9-33D344F1ED0D"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BC3D24FB-50A2-4E37-A479-AF21F8ECD706"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p8:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3070787D-76E1-4671-B99D-213F7103B3A2"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.0:p9:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0140276F-9C31-4B5C-A5AC-DE0EBB885275"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD730B6A-F123-4685-ACB3-4F20AAAB77F3"
          },
          {
            "criteria": "cpe:2.3:o:freebsd:freebsd:12.1:p1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "508150E3-2C0C-4EEB-BFC9-BB5CEB404C06"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References