CVE-2026-7270

High

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite…

freebsd·CWE-783·Published 2026-04-30

CVSS

7.8

EPSS

0.00

KEV

Exploits

cve.orgen

252 chars

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to obtain superuser privileges.

NVDen

252 chars

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.8	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	7.8	—	—	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H