Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd freebsd 10.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-1879
The Stream Control Transmission Protocol (SCTP) module in FreeBSD 9.3 before p33, 10.1 before p26, and 10.2 before p9, when the kernel is configured for IPv6, allows remote malicious users to cause a denial of service (assertion failure or NULL pointer dereference and kernel pani...
Freebsd Freebsd 10.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.3
1 EDB exploit
2 Github repositories
NA
CVE-2014-8611
The __sflush function in fflush.c in stdio in libc in FreeBSD 10.1 and the kernel in Apple iOS prior to 9 mishandles failures of the write system call, which allows context-dependent malicious users to execute arbitrary code or cause a denial of service (heap-based buffer overflo...
Apple Iphone Os
Freebsd Freebsd 10.1
Apple Mac Os X
1 Github repository
NA
CVE-2015-1415
The bsdinstall installer in FreeBSD 10.x prior to 10.1 p9, when configuring full disk encrypted ZFS, uses world-readable permissions for the GELI keyfile (/boot/encryption.key), which allows local users to obtain sensitive key information by reading the file.
Freebsd Freebsd 10.0
Freebsd Freebsd
Freebsd Freebsd 10.1
NA
CVE-2015-1414
Integer overflow in FreeBSD prior to 8.4 p24, 9.x prior to 9.3 p10. 10.0 before p18, and 10.1 before p6 allows remote malicious users to cause a denial of service (crash) via a crafted IGMP packet, which triggers an incorrect size calculation and allocation of insufficient memory...
Netgate Pfsense 2.2.1
Debian Debian Linux 7.0
Freebsd Freebsd 8.4
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
NA
CVE-2014-8612
Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privileges via the stream id to the setsockopt function, when setting the SCTIP_SS_VAL...
Freebsd Freebsd 8.4
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
Freebsd Freebsd 10.1
1 EDB exploit
NA
CVE-2014-0998
Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges via a negative value in a VT_WAITACTIVE ioctl call, which triggers an array index...
Freebsd Freebsd 10.1
1 EDB exploit
NA
CVE-2014-8613
The sctp module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allows remote malicious users to cause a denial of service (NULL pointer dereference and kernel panic) via a crafted RE_CONFIG chunk.
Freebsd Freebsd 9.3
Freebsd Freebsd 8.4
Freebsd Freebsd 10.1
NA
CVE-2014-8476
The setlogin function in FreeBSD 8.4 up to and including 10.1-RC4 does not initialize the buffer used to store the login name, which allows local users to obtain sensitive information from kernel memory via a call to getlogin, which returns the entire buffer.
Freebsd Freebsd 10.1
Freebsd Freebsd 10.0
Freebsd Freebsd 8.4
Freebsd Freebsd 9.0
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
NA
CVE-2014-3954
Stack-based buffer overflow in rtsold in FreeBSD 9.1 up to and including 10.1-RC2 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via crafted DNS parameters in a router advertisement message.
Freebsd Freebsd 9.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
NA
CVE-2014-3955
routed in FreeBSD 8.4 up to and including 10.1-RC2 allows remote malicious users to cause a denial of service (assertion failure and daemon exit) via an RIP request from a source not on a directly connected network.
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Freebsd Freebsd 9.3
Freebsd Freebsd 8.4
Freebsd Freebsd 10.0
Freebsd Freebsd 10.1
Freebsd Freebsd 9.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »