CVE-2026-7270

· NIST NVD ↗

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by an unprivileged user to obtain superuser privileges.

HIGH
CVSS severity
7.8
CVSS base score
2026-04-30
Published

CWE codes

CWE-783

Affected products

freebsd:freebsd

Sources