Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openbsd openbsd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-35784
A double free or use after free could occur after SSL_clear in OpenBSD 7.2 before errata 026 and 7.3 before errata 004, and in LibreSSL prior to 3.6.3 and 3.7.x prior to 3.7.3. NOTE: OpenSSL is not affected.
Openbsd Openbsd 7.2
Openbsd Libressl
Openbsd Openbsd 7.3
7.5
CVSSv2
CVE-2007-4752
ssh in OpenSSH prior to 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows malicious users to violate intended policy and gain privileges by causing an X client to be treated as trusted.
Openbsd Openssh 4.3p2
Openbsd Openssh
Openbsd Openssh 4.1
Openbsd Openssh 4.0p1
Openbsd Openssh 4.4
Openbsd Openssh 4.1p1
Openbsd Openssh 4.2p1
Openbsd Openssh 4.5
Openbsd Openssh 4.2
Openbsd Openssh 4.4p1
Openbsd Openssh 4.3p1
Openbsd Openssh 4.3
Openbsd Openssh 4.0
7.8
CVSSv2
CVE-2009-0687
The pf_test_rule function in OpenBSD Packet Filter (PF), as used in OpenBSD 4.2 up to and including 4.5, NetBSD 5.0 before RC3, MirOS 10 and previous versions, and MidnightBSD 0.3-current allows remote malicious users to cause a denial of service (panic) via crafted IP packets th...
Openbsd Openbsd 4.4
Mirbsd Miros
Netbsd Netbsd 5.0
Midnightbsd Midnightbsd 0.3-current
Openbsd Openbsd 4.5
Openbsd Openbsd 4.2
Openbsd Openbsd 4.3
3 EDB exploits
4.9
CVSSv2
CVE-2016-6350
OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (NULL pointer dereference and panic) via a sysctl call with a path starting with 10,9.
Openbsd Openbsd 5.9
Openbsd Openbsd 5.8
4.6
CVSSv2
CVE-2006-0098
The dupfdopen function in sys/kern/kern_descrip.c in OpenBSD 3.7 and 3.8 allows local users to re-open arbitrary files by using setuid programs to access file descriptors using /dev/fd/.
Openbsd Openbsd 3.7
Openbsd Openbsd 3.8
7.2
CVSSv2
CVE-2002-0542
mail in OpenBSD 2.9 and 3.0 processes a tilde (~) escape character in a message even when it is not in interactive mode, which could allow local users to gain root privileges via calls to mail in cron.
Openbsd Openbsd 2.9
Openbsd Openbsd 3.0
1 EDB exploit
7.2
CVSSv2
CVE-2002-1420
Integer signedness error in select() on OpenBSD 3.1 and previous versions allows local users to overwrite arbitrary kernel memory via a negative value for the size parameter, which satisfies the boundary check as a signed integer, but is later used as an unsigned integer during a...
Openbsd Openbsd 3.1
Openbsd Openbsd 3.0
4.6
CVSSv2
CVE-2001-1415
vi.recover in OpenBSD prior to 3.1 allows local users to remove arbitrary zero-byte files such as device nodes.
Openbsd Openbsd 2.9
Openbsd Openbsd 3.0
4.9
CVSSv2
CVE-2018-14775
tss_alloc in sys/arch/i386/i386/gdt.c in OpenBSD 6.2 and 6.3 has a Local Denial of Service (system crash) due to incorrect I/O port access control on the i386 architecture.
Openbsd Openbsd 6.2
Openbsd Openbsd 6.3
1 Github repository
4.6
CVSSv2
CVE-2004-0482
Multiple integer overflows in (1) procfs_cmdline.c, (2) procfs_fpregs.c, (3) procfs_linux.c, (4) procfs_regs.c, (5) procfs_status.c, and (6) procfs_subr.c in procfs for OpenBSD 3.5 and previous versions allow local users to read sensitive kernel memory and possibly perform other ...
Openbsd Openbsd 3.5
Openbsd Openbsd 3.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »