Local File Modification Vulnerability in FreeBSD's KTLS Implementation
CVE-2026-45257

7.8HIGH

Key Information:

Vendor: FreeBSD
Status: FreeBSD
Vendor: CVE Published:; 26 June 2026

What is CVE-2026-45257?

A vulnerability exists in the KTLS implementation of FreeBSD that allows an unprivileged local user to overwrite the contents of a file. When data is transmitted over a loopback connection and the KTLS receive path is enabled, the received data can directly modify the page cache of file-backed memory. This occurs when the assumption that the mbufs holding received data are anonymous proves false. As a result, an attacker can escalate privileges by altering the contents of setuid binaries or other critical files, leading to potential system control. This vulnerability highlights the risks associated with improper handling of data in network communications.

Affected Version(s)

FreeBSD 15.0-RELEASE

FreeBSD 14.4-RELEASE

FreeBSD 14.3-RELEASE

References

https://security.freebsd.org/advisories/FreeBSD-SA-26:26....

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 26, 2026
Vulnerability Reserved
May 11, 2026

Credit

Bumsrakete

CVE-2026-45257 Data

JSON