VYPR
Medium severity5.5NVD Advisory· Published Mar 12, 2017· Updated Jun 17, 2026

CVE-2014-9645

CVE-2014-9645

Description

The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" command.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

38

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.