Vulnerability Details : CVE-2005-2218
The device file system (devfs) in FreeBSD 5.x does not properly check parameters of the node type when creating a device node, which makes hidden devices available to attackers, who can then bypass restrictions on a jailed process.
Products affected by CVE-2005-2218
- cpe:2.3:o:freebsd:freebsd:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.0:alpha:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.1:release_p5:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.1:releng:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.0:release_p14:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.0:releng:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.2:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.1:release:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.2.1:release:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.2.1:releng:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.1:alpha:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.3:release:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.3:stable:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.4:release:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.3:releng:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.4:pre-release:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.4:releng:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:5.4:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-2218
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-2218
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-2005-2218
Jump to