CVE-2026-7270
Local privilege escalation via execve()
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to obtain superuser privileges.
| CWE | CWE-783 |
| Vendor | freebsd |
| Product | freebsd |
| Published | Apr 30, 2026 |
Stay Ahead of the Next One
Get instant alerts for freebsd freebsd
Be the first to know when new unknown vulnerabilities affecting freebsd freebsd are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
FreeBSD / FreeBSD
15.0-RELEASE < p7 14.4-RELEASE < p3 14.3-RELEASE < p12 13.5-RELEASE < p13
References
Credits
Ryan Austin of Calif.io