Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 10.1 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2016-1882
FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9 allow remote malicious users to cause a denial of service (kernel crash) via vectors related to creating a TCP connection with the TCP_MD5SIG and TCP_NOOPT socket options.
Freebsd Freebsd 9.3
Freebsd Freebsd 10.2
Freebsd Freebsd 10.1
6.9
CVSSv2
CVE-2014-8611
The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS prior to 9 mishandles failures of the write system call, which allows context-dependent malicious users to execute arbitrary code or cause a denial of service (heap-based buffer overflo...
Apple Iphone Os
Freebsd Freebsd 10.1
Apple Mac Os X
2.1
CVSSv2
CVE-2015-1415
The bsdinstall installer in FreeBSD 10.x prior to 10.1 p9, when configuring full disk encrypted ZFS, uses world-readable permissions for the GELI keyfile (/boot/encryption.key), which allows local users to obtain sensitive key information by reading the file.
Freebsd Freebsd 10.0
Freebsd Freebsd
Freebsd Freebsd 10.1
7.8
CVSSv2
CVE-2015-1414
Integer overflow in FreeBSD prior to 8.4 p24, 9.x prior to 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote malicious users to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory...
Netgate Pfsense 2.2.1
Debian Debian Linux 7.0
Freebsd Freebsd 8.4
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
7.2
CVSSv2
CVE-2014-0998
Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges via a negative value in a VT_WAITACTIVE ioctl call, which triggers an array index...
Freebsd Freebsd 10.1
1 EDB exploit
7.8
CVSSv2
CVE-2014-8613
The sctp module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allows remote malicious users to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted RE_CONFIG chunk.
Freebsd Freebsd 9.3
Freebsd Freebsd 8.4
Freebsd Freebsd 10.1
4.6
CVSSv2
CVE-2014-8612
Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privileges via the stream id to the setsockopt function, when setting the SCTIP_SS_VAL...
Freebsd Freebsd 8.4
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
Freebsd Freebsd 10.1
1 EDB exploit
2.1
CVSSv2
CVE-2014-8476
The setlogin function in FreeBSD 8.4 up to and including 10.1-RC4 does not initialize the buffer used to store the login name, which allows local users to obtain sensitive information from kernel memory via a call to getlogin, which returns the entire buffer.
Freebsd Freebsd 10.1
Freebsd Freebsd 10.0
Freebsd Freebsd 8.4
Freebsd Freebsd 9.0
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
10
CVSSv2
CVE-2014-3954
Stack-based buffer overflow in rtsold in FreeBSD 9.1 up to and including 10.1-RC2 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via crafted DNS parameters in a router advertisement message.
Freebsd Freebsd 9.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
5
CVSSv2
CVE-2014-3955
routed in FreeBSD 8.4 up to and including 10.1-RC2 allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via an RIP request from a source not on a directly connected network.
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
Freebsd Freebsd 8.4
Freebsd Freebsd 10.0
Freebsd Freebsd 10.1
Freebsd Freebsd 9.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »