Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd libfetch vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-7450
In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE prior to 12.1-RELEASE-p2, 12.0-RELEASE prior to 12.0-RELEASE-p13, 11.3-STABLE before r357214, and 11.3-RELEASE prior to 11.3-RELEASE-p6, URL handling in libfetch with URLs containing username and/or password components is vulner...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.0
Freebsd Freebsd 12.1
9.1
CVSSv3
CVE-2021-36159
libfetch prior to 2021-07-26, as used in apk-tools, xbps, and other products, mishandles numeric strings for the FTP and HTTP protocols. The FTP passive mode implementation allows an out-of-bounds read because strtol is used to parse the relevant numbers into address bytes. It do...
Freebsd Libfetch
4 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started