VDB
CVE-2014-9645
CVE-2014-9645
PUBLISHED
The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" command.
EPSS 0.37% · 59.5th percentile
Risk Scores
EPSS Score
0.37%
59.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:14.04:LTS | busybox | 0, 1:1.20.0-8.1ubuntu1, 1:1.20.0-9ubuntu1 |
Exploit Intelligence
- https://plus.google.com/+MathiasKrause/posts/PqFCo4bfrWu (circl)
- https://bugs.busybox.net/show_bug.cgi?id=7652 (circl)
- [oss-security] 20150124 Re: CVE Request: Linux kernel crypto api unprivileged arbitrary module load (circl)
- GLSA-201503-13 (circl)
- 72324 (circl)
- https://bugzilla.redhat.com/show_bug.cgi?id=1185707 (circl)
- [debian-lts-announce] 20180727 [SECURITY] [DLA 1445-1] busybox security update (circl)
- http://git.busybox.net/busybox/commit/?id=4e314faa0aecb66717418e9a47a4451aec59262b (circl)
- USN-3935-1 (circl)
- 20200313 SEC Consult SA-20200312-0 :: Authenticated Command Injection in Phoenix Contact TC Router & TC Cloud Client (circl)
…and 2 more exploits
Timeline
- Mar 12, 2017 CVE Published
- Mar 15, 2020 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 3, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2014-9645 third-party-advisory
- https://ubuntu.com/security/notices/USN-3935-1 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2014-9645 third-party-advisory