发布于3月6日3月6日 Members FreeBSD: VID-1B15A554-C981-11ED-BB39-901B0E9408DC (CVE-2023-28436): tailscale -- security vulnerability in Tailscale SSH Severity 8 CVSS (AV:A/AC:L/Au:S/C:C/I:C/A:C) Published 03/22/2023 Created 03/24/2023 Added 03/23/2023 Modified 01/28/2025 Description Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below. From VID-1B15A554-C981-11ED-BB39-901B0E9408DC: Tailscale team reports: A vulnerability identified in the implementation of Tailscale SSH in FreeBSD allowed commands to be run with a higher privilege group ID than that specified by Tailscale SSH access rules. Solution(s) freebsd-upgrade-package-tailscale References CVE-2023-28436
