Vulnerability Details : CVE-2015-1415
The bsdinstall installer in FreeBSD 10.x before 10.1 p9, when configuring full disk encrypted ZFS, uses world-readable permissions for the GELI keyfile (/boot/encryption.key), which allows local users to obtain sensitive key information by reading the file.
Vulnerability category: Information leak
Products affected by CVE-2015-1415
- cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.1:rc1:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.1:rc2:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.0:rc1:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.0:rc2:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.1:rc4:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:10.1:rc3:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-1415
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 19 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-1415
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
2.1
|
LOW | AV:L/AC:L/Au:N/C:P/I:N/A:N |
3.9
|
2.9
|
NIST |
CWE ids for CVE-2015-1415
-
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-1415
-
http://www.securitytracker.com/id/1032042
FreeBSD 'bsdinstall' Lets Local Users Obtain the GEOM ELI Keyfile - SecurityTracker
-
http://packetstormsecurity.com/files/131338/FreeBSD-10.x-ZFS-encryption.key-Disclosure.html
FreeBSD 10.x ZFS encryption.key Disclosure ≈ Packet StormExploit
-
https://www.freebsd.org/security/advisories/FreeBSD-SA-15:08.bsdinstall.asc
Exploit;Vendor Advisory
-
http://www.securityfocus.com/archive/1/535209/100/0/threaded
SecurityFocus
Jump to