Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 9.1 vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2013-4851
The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x up to and including 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allow...
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 8.3
4.3
CVSSv2
CVE-2014-8475
FreeBSD 9.1, 9.2, and 10.0, when compiling OpenSSH with Kerberos support, uses incorrect library ordering when linking sshd, which causes symbols to be resolved incorrectly and allows remote malicious users to cause a denial of service (sshd deadlock and prevention of new connect...
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 10.0
6.9
CVSSv2
CVE-2013-2171
The vm_map_lookup function in sys/vm/vm_map.c in the mmap implementation in the kernel in FreeBSD 9.0 up to and including 9.1-RELEASE-p4 does not properly determine whether a task should have write access to a memory location, which allows local users to bypass filesystem write p...
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
2 EDB exploits
2 Github repositories
1 Article
7.8
CVSSv2
CVE-2013-5209
The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 up to and including 9.2-PRERELEASE does not properly initialize the state-cookie data structure, which allows remote malicious users to obtain sensitive inform...
Freebsd Freebsd 9.2
Freebsd Freebsd 8.3
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
7.2
CVSSv2
CVE-2013-3077
Multiple integer overflows in the IP_MSFILTER and IPV6_MSFILTER features in (1) sys/netinet/in_mcast.c and (2) sys/netinet6/in6_mcast.c in the multicast implementation in the kernel in FreeBSD 8.3 up to and including 9.2-PRERELEASE allow local users to bypass intended restriction...
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 9.0
Freebsd Freebsd 8.3
4.9
CVSSv2
CVE-2014-3880
The (1) execve and (2) fexecve system calls in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 10.0 before p4 destroys the virtual memory address space and mappings for a process before all threads have terminated, which allows local users to cause a denial ...
Freebsd Freebsd 10.0
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 8.4
6.9
CVSSv2
CVE-2013-5691
The (1) IPv6 and (2) ATM ioctl request handlers in the kernel in FreeBSD 8.3 up to and including 9.2-STABLE do not validate SIOCSIFADDR, SIOCSIFBRDADDR, SIOCSIFDSTADDR, and SIOCSIFNETMASK requests, which allows local users to perform link-layer actions, cause a denial of service ...
Freebsd Freebsd 8.3
Freebsd Freebsd 9.0
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
2.1
CVSSv2
CVE-2014-3873
The ktrace utility in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 9.3-BETA1 before p1 uses an incorrect page fault kernel trace entry size, which allows local users to obtain sensitive information from kernel memory via a kernel process trace.
Freebsd Freebsd 9.3
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 8.4
4.9
CVSSv2
CVE-2014-3952
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize the buffer between the header and data of a control message, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
Freebsd Freebsd 9.1
Freebsd Freebsd 8.4
Freebsd Freebsd 10.0
Freebsd Freebsd 9.2
4.9
CVSSv2
CVE-2014-3953
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via a (1) SCTP_SNDRCV, (2) SCTP_EXTRCV, or (3) SCTP_RCVINFO SCTP cmsg or a ...
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 10.0
Freebsd Freebsd 8.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »