CNNVD-202512-4776 Information

CNNVD ID

CNNVD-202512-4776

Related CVE

CVE-2025-14558

• CNNVD Published: 2025-12-25

Description (Chinese)

FreeBSD是FreeBSD基金会的一套类Unix操作系统。 FreeBSD存在安全漏洞，该漏洞源于rtsold(8) 在传递给 resolvconf(8) 之前不验证shell元字符的DNSSL域名，可能导致从邻近网络远程执行代码。

Description (English)

FreeBSD is a type Unix operating system of the FreeBSD Foundation. FreeBSD has a security loophole which originates from the DNSSL domain name of rtsold (8), which does not verify the shell character before it is passed to resolvconf (8), which may result in remote implementation of the code from a nearby network.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

freeBSD

Published

2025-12-25

Last Modified

2026-02-24

References

https://cxsecurity.com/issue/WLB-2026020026 https://www.exploit-db.com/exploits/52463

Patch

https://www.freebsd.org/security/advisories/FreeBSD-SA-25:12.rtsold.asc