CVE-2026-7270

HIGH 7.8

Local privilege escalation via execve()

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

3th

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to obtain superuser privileges.

CWE	CWE-783
Vendor	freebsd
Product	freebsd
Published	Apr 30, 2026
Last Updated	May 10, 2026

Stay Ahead of the Next One

Get instant alerts for freebsd freebsd

Be the first to know when new high vulnerabilities affecting freebsd freebsd are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

FreeBSD / FreeBSD

15.0-RELEASE < p7 14.4-RELEASE < p3 14.3-RELEASE < p12 13.5-RELEASE < p13

References

NVD ↗ CVE.org ↗ EPSS Data ↗

security.freebsd.org: https://security.freebsd.org/advisories/FreeBSD-SA-26:13.exec.asc blog.calif.io: https://blog.calif.io/p/cve-2026-7270-how-i-get-root-on-freebsd news.ycombinator.com: https://news.ycombinator.com/item?id=48077971

Credits

Ryan Austin of Calif.io