How severe is CVE-2024-25940?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2024-25940?

This is classified as CWE-922, which is a common weakness in software security.

CVE-2024-25940 - MEDIUM Severity | CVSS 6.3

Vulnerability Description

`bhyveload -h <host-path>` may be used to grant loader access to the <host-path> directory tree on the host. Affected versions of bhyveload(8) do not make any attempt to restrict loader's access to <host-path>, allowing the loader to read any file the host user has access to. In the bhyveload(8) model, the host supplies a userboot.so to boot with, but the loader scripts generally come from the guest image. A maliciously crafted script could be used to exfiltrate sensitive data from the host accessible to the user running bhyhveload(8), which is often the system root.

Related Vulnerabilities

CVE-2025-22492

MEDIUM

CVSS:6.3(Medium)

The connection string visible to users with access to FRSCore database on Foreseer Reporting Software (FRS) VM, this string can be used for gaining administrative access to the 4crXref database. This ...

CWE-9222025

CVE-2023-42839

MEDIUM

CVSS:6.2(Medium)

This issue was addressed with improved state management. This issue is fixed in tvOS 17.1, watchOS 10.1, macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. An app may be able to access sensitive user data.

CWE-9222023

CVE-2024-34721

MEDIUM

CVSS:6.2(Medium)

In ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. This could lead to local information disclosure with no addi...

CWE-9222024

CVE-2024-44216

MEDIUM

CVSS:6.2(Medium)

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to access user-sensitive data.

CWE-9222024

CVE-2024-44257

MEDIUM

CVSS:6.2(Medium)

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. An app may be able to access sensitive user data.

CWE-9222024

CVE-2018-13313

MEDIUM

CVSS:6.5(Medium)

In TOTOLINK A3002RU 1.0.8, the router provides a page that allows the user to change their account name and password. This page, password.htm, contains JavaScript which is used to confirm the user kno...

CWE-9222018