Critical severity10.0NVD Advisory· Published Dec 4, 2018· Updated Jun 17, 2026
CVE-2018-17160
CVE-2018-17160
Description
In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bhyve host possibly permitting arbitrary code execution. A guest OS using a firmware image can cause the bhyve process to crash, or possibly execute arbitrary code on the host as root.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- security.freebsd.org/advisories/FreeBSD-SA-18:14.bhyve.ascnvdMitigationPatchVendor Advisory
- www.securityfocus.com/bid/106210nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.