CVE-2026-6386

EPSS 0.02%
Veröffentlicht 22.04.2026 02:33:24
Zuletzt bearbeitet 01.05.2026 12:49:08
Quelle secteam@freebsd.org
CVE-Watchlists
Login
Unerledigt
Login

Missing large page handling in pmap_pkru_update_range()

In order to apply a particular protection key to an address range, the kernel must update the corresponding page table entries.  The subroutine which handled this failed to take into account the presence of 1GB largepage mappings created using the shm_create_largepage(3) interface.  In particular, it would always treat a page directory page entry as pointing to another page table page.

The bug can be abused by an unprivileged user to cause pmap_pkru_update_range() to treat userspace memory as a page table page, and thus overwrite memory to which the application would otherwise not have access.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 2 Referenzen 4

NVD 33 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Freebsd ≫ Freebsd Version13.5 Update-

Freebsd ≫ Freebsd Version13.5 Updatebeta3

Freebsd ≫ Freebsd Version13.5 Updatep1

Freebsd ≫ Freebsd Version13.5 Updatep10

Freebsd ≫ Freebsd Version13.5 Updatep11

Freebsd ≫ Freebsd Version13.5 Updatep2

Freebsd ≫ Freebsd Version13.5 Updatep3

Freebsd ≫ Freebsd Version13.5 Updatep4

Freebsd ≫ Freebsd Version13.5 Updatep5

Freebsd ≫ Freebsd Version13.5 Updatep6

Freebsd ≫ Freebsd Version13.5 Updatep7

Freebsd ≫ Freebsd Version13.5 Updatep8

Freebsd ≫ Freebsd Version13.5 Updatep9

Freebsd ≫ Freebsd Version14.3 Update-

Freebsd ≫ Freebsd Version14.3 Updatep1

Freebsd ≫ Freebsd Version14.3 Updatep10

Freebsd ≫ Freebsd Version14.3 Updatep2

Freebsd ≫ Freebsd Version14.3 Updatep3

Freebsd ≫ Freebsd Version14.3 Updatep4

Freebsd ≫ Freebsd Version14.3 Updatep5

Freebsd ≫ Freebsd Version14.3 Updatep6

Freebsd ≫ Freebsd Version14.3 Updatep7

Freebsd ≫ Freebsd Version14.3 Updatep8

Freebsd ≫ Freebsd Version14.3 Updatep9

Freebsd ≫ Freebsd Version14.4 Update-

Freebsd ≫ Freebsd Version14.4 Updatep1

Freebsd ≫ Freebsd Version14.4 Updaterc1

Freebsd ≫ Freebsd Version15.0 Update-

Freebsd ≫ Freebsd Version15.0 Updatep1

Freebsd ≫ Freebsd Version15.0 Updatep2

Freebsd ≫ Freebsd Version15.0 Updatep3

Freebsd ≫ Freebsd Version15.0 Updatep4

Freebsd ≫ Freebsd Version15.0 Updatep5

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.065

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.2	2.5	3.6	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

https://security.freebsd.org/advisories/FreeBSD-SA-26:11.amd64.asc

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-6386

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-6386

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-6386

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-6386