Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 3.0 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-6922
One of the data structures that holds TCP segments in all versions of FreeBSD before 11.2-RELEASE-p1, 11.1-RELEASE-p12, and 10.4-RELEASE-p10 uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number...
Freebsd Freebsd 10.4
Freebsd Freebsd 11.1
Freebsd Freebsd 11.2
3.7
CVSSv3
CVE-2019-9495
The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to side-channel attacks as a result of cache access patterns. All versions of hostapd and wpa_supplicant with EAP-PWD support are vulnerable. The ability to install and execute applications is necessary f...
W1.fi Hostapd
W1.fi Wpa Supplicant
Fedoraproject Fedora 28
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Debian Debian Linux 8.0
Synology Radius Server 3.0
Synology Router Manager
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
NA
CVE-2013-6832
The nand_ioctl function in sys/dev/nand/nand_geom.c in the nand driver in the kernel in FreeBSD 10 and previous versions does not properly initialize a certain data structure, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call.
Freebsd Freebsd 8.3
Freebsd Freebsd 8.2
Freebsd Freebsd 6.4
Freebsd Freebsd 6.3
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.2
Freebsd Freebsd 4.6
Freebsd Freebsd 4.5
Freebsd Freebsd 4.0
Freebsd Freebsd 3.5.1
Freebsd Freebsd 2.2.8
Freebsd Freebsd 2.2.7
Freebsd Freebsd 2.2
Freebsd Freebsd 2.1.7.1
Freebsd Freebsd 2.0.1
Freebsd Freebsd 2.0
Freebsd Freebsd 1.0
Freebsd Freebsd 0.4 1
Freebsd Freebsd 9.0
Freebsd Freebsd 8.4
Freebsd Freebsd 7.2
Freebsd Freebsd 7.1
NA
CVE-2013-6833
The qls_eioctl function in sys/dev/qlxge/qls_ioctl.c in the kernel in FreeBSD 10 and previous versions does not validate a certain size parameter, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call.
Freebsd Freebsd 8.4
Freebsd Freebsd 8.3
Freebsd Freebsd 7.1
Freebsd Freebsd 7.0
Freebsd Freebsd 6.4
Freebsd Freebsd 5.3
Freebsd Freebsd 5.2.1
Freebsd Freebsd 4.6.2
Freebsd Freebsd 4.6
Freebsd Freebsd 4.1
Freebsd Freebsd 9.1
Freebsd Freebsd 9.0
Freebsd Freebsd 7.3
Freebsd Freebsd 7.2
Freebsd Freebsd 5.5
Freebsd Freebsd 5.4
Freebsd Freebsd 4.8
Freebsd Freebsd 4.7
Freebsd Freebsd 4.11
Freebsd Freebsd 4.10
Freebsd Freebsd 4.1.1
Freebsd Freebsd 3.2
NA
CVE-2013-6834
The ql_eioctl function in sys/dev/qlxgbe/ql_ioctl.c in the kernel in FreeBSD 10 and previous versions does not validate a certain size parameter, which allows local users to obtain sensitive information from kernel memory via a crafted ioctl call.
Freebsd Freebsd 8.2
Freebsd Freebsd 8.0
Freebsd Freebsd 6.3
Freebsd Freebsd 6.1
Freebsd Freebsd 5.2.1
Freebsd Freebsd 5.1
Freebsd Freebsd 4.5
Freebsd Freebsd 4.3
Freebsd Freebsd 3.5.1
Freebsd Freebsd 3.4
Freebsd Freebsd 2.2.8
Freebsd Freebsd 2.2.6
Freebsd Freebsd 2.1.7.1
Freebsd Freebsd 2.1.6.1
Freebsd Freebsd 2.0
Freebsd Freebsd 1.5
Freebsd Freebsd 1.0
Freebsd Freebsd 9.2
Freebsd Freebsd 7.4
Freebsd Freebsd 7.3
Freebsd Freebsd 7.2
Freebsd Freebsd 7.1
NA
CVE-2012-2143
The crypt_des (aka DES-based crypt) function in FreeBSD prior to 9.0-RELEASE-p2, as used in PHP, PostgreSQL, and other products, does not process the complete cleartext password if this password contains a 0x80 character, which makes it easier for context-dependent malicious user...
Postgresql Postgresql
Freebsd Freebsd 5.2.1
Freebsd Freebsd 7.4
Freebsd Freebsd 6.1
Freebsd Freebsd 3.1
Freebsd Freebsd 6.4
Freebsd Freebsd 6.3
Freebsd Freebsd 2.2.5
Freebsd Freebsd 5.5
Freebsd Freebsd 8.2
Freebsd Freebsd 5.4
Freebsd Freebsd 5.3
Freebsd Freebsd 2.2.2
Freebsd Freebsd 2.1.7
Freebsd Freebsd 4.11
Freebsd Freebsd 2.0.5
Freebsd Freebsd 8.0
Freebsd Freebsd 1.1.5.1
Freebsd Freebsd 4.5
Freebsd Freebsd 4.7
Freebsd Freebsd 7.0
Freebsd Freebsd
NA
CVE-2010-4666
Buffer overflow in libarchive 3.0 pre-release code allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CAB file, which is not properly handled during the reading of Huffman code data within LZX com...
Freebsd Libarchive 3.0
NA
CVE-2011-2895
The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont prior to 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD prior to 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x prior to 5.0.3 and 5.1.x prior to 5.1.1, FreeTyp...
Openbsd Openbsd 3.5
Openbsd Openbsd 3.4
Openbsd Openbsd 3.3
Openbsd Openbsd 2.6
Openbsd Openbsd 2.0
Freebsd Freebsd
Netbsd Netbsd
Openbsd Openbsd 3.0
Openbsd Openbsd 2.9
Openbsd Openbsd 2.3
Openbsd Openbsd 2.4
X Libxfont 1.2.0
X Libxfont 1.2.1
X Libxfont 1.2.9
X Libxfont 1.3.0
X Libxfont 1.4.2
Openbsd Openbsd 3.6
Openbsd Openbsd 2.8
Openbsd Openbsd 2.7
Openbsd Openbsd 2.5
Openbsd Openbsd
X Libxfont 1.2.2
NA
CVE-2010-4755
The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and previous versions, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memor...
Openbsd Openssh 1.2.27
Openbsd Openssh 1.2.3
Openbsd Openssh 1.3
Openbsd Openssh 1.5
Openbsd Openssh 2.9.9p2
Openbsd Openssh 2.9p1
Openbsd Openssh 2.9p2
Openbsd Openssh 3.0
Openbsd Openssh 3.0.1
Openbsd Openssh 3.4
Openbsd Openssh 3.4p1
Openbsd Openssh 3.5
Openbsd Openssh 3.5p1
Openbsd Openssh 3.9.1p1
Openbsd Openssh 4.0
Openbsd Openssh 4.0p1
Openbsd Openssh 4.1
Openbsd Openssh 4.9
Openbsd Openssh
Openbsd Openssh 5.7
Openbsd Openssh 5.6
Openbsd Openssh 1.2.1
NA
CVE-2011-0343
Balabit syslog-ng 2.0, 3.0, 3.1, 3.2 OSE and PE, when running on FreeBSD or HP-UX, does not properly perform cast operations, which causes syslog-ng to use a default value of -1 to create log files with insecure permissions (07777), which allows local users to read and write to t...
Oneidentity Syslog-ng 2.0
Oneidentity Syslog-ng 3.0
Oneidentity Syslog-ng 3.1
Oneidentity Syslog-ng 3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »