CVE-2014-9645
Summary
| CVE | CVE-2014-9645 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-03-12 06:59:00 UTC |
| Updated | 2025-04-20 01:37:25 UTC |
| Description | The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" command. |
Risk And Classification
Primary CVSS: v3.0 5.5 MEDIUM from [email protected]
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Problem Types: CWE-20 | n/a
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 3.0 | [email protected] | Primary | 5.5 | MEDIUM | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N |
| 2.0 | [email protected] | Primary | 2.1 | AV:L/AC:L/Au:N/C:N/I:P/A:N |
CVSS v3.0 Breakdown
Attack Vector
LocalAttack Complexity
LowPrivileges Required
LowUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
HighAvailability
NoneCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
CVSS v2.0 Breakdown
Access Vector
LocalAccess Complexity
LowAuthentication
NoneConfidentiality
NoneIntegrity
PartialAvailability
NoneAV:L/AC:L/Au:N/C:N/I:P/A:N
NVD Known Affected Configurations (CPE 2.3)
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| BusyBox: Multiple vulnerabilities (GLSA 201503-13) — Gentoo security | af854a3a-2127-422b-91ae-364da2661108 | security.gentoo.org | |
| busybox - BusyBox: The Swiss Army Knife of Embedded Linux | af854a3a-2127-422b-91ae-364da2661108 | git.busybox.net | Issue Tracking, Patch, Third Party Advisory |
| [SECURITY] [DLA 1445-1] busybox security update | af854a3a-2127-422b-91ae-364da2661108 | lists.debian.org | |
| The upcoming Linux kernel v3.19 will contain a fix for a vulnerability in the… | af854a3a-2127-422b-91ae-364da2661108 | plus.google.com | Patch, Third Party Advisory |
| 1185707 – (CVE-2014-9645) CVE-2014-9645 busybox: unprivileged arbitrary module load via basename abuse | af854a3a-2127-422b-91ae-364da2661108 | bugzilla.redhat.com | Issue Tracking |
| BusyBox CVE-2014-9645 Local Security Bypass Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| Full Disclosure: SEC Consult SA-20200312-0 :: Authenticated Command Injection in Phoenix Contact TC Router & TC Cloud Client | af854a3a-2127-422b-91ae-364da2661108 | seclists.org | |
| oss-security - Re: CVE Request: Linux kernel crypto api unprivileged arbitrary module load | af854a3a-2127-422b-91ae-364da2661108 | openwall.com | Mailing List, Patch, Third Party Advisory |
| 7652 – modprobe wrongly accepts paths as module names | af854a3a-2127-422b-91ae-364da2661108 | bugs.busybox.net | Issue Tracking |
| USN-3935-1: BusyBox vulnerabilities | Ubuntu security notices | Ubuntu | af854a3a-2127-422b-91ae-364da2661108 | usn.ubuntu.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.