Unrated severityNVD Advisory· Published Sep 5, 2024· Updated Nov 4, 2025
Multiple issues in ctl(4) CAM Target Layer
CVE-2024-42416
Description
The ctl_report_supported_opcodes function did not sufficiently validate a field provided by userspace, allowing an arbitrary write to a limited amount of kernel help memory.
Malicious software running in a guest VM that exposes virtio_scsi can exploit the vulnerabilities to achieve code execution on the host in the bhyve userspace process, which typically runs as root. Note that bhyve runs in a Capsicum sandbox, so malicious code is constrained by the capabilities available to the bhyve process. A malicious iSCSI initiator could achieve remote code execution on the iSCSI target host.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- security.freebsd.org/advisories/FreeBSD-SA-24:11.ctl.ascmitrevendor-advisory
News mentions
0No linked articles in our index yet.