Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2019-15878
In FreeBSD 12.1-STABLE before r352509, 11.3-STABLE before r352509, and 11.3-RELEASE before p9, an unprivileged local user can trigger a use-after-free situation due to improper checking in SCTP when an application tries to update an SCTP-AUTH shared key.
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
7.8
CVSSv3
CVE-2020-10566
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, mishandles font loading by a guest through a grub2.cfg file, leading to a buffer overflow.
Freebsd Freebsd
1 Github repository
7.8
CVSSv3
CVE-2020-10565
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, does not validate the address provided as part of a memrw command (read_* or write_*) by a guest through a grub2.cfg file. This allows an untrusted guest to perform arbitrary read or write operations in the ...
Freebsd Freebsd
1 Github repository
7.8
CVSSv3
CVE-2019-19816
In the Linux kernel 5.0.21, mounting a crafted btrfs filesystem image and performing some operations can cause slab-out-of-bounds write access in __btrfs_map_block in fs/btrfs/volumes.c, because a value of 1 for the number of data stripes is mishandled.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 9.0
Netapp Steelstore Cloud Integrated Storage -
Netapp Active Iq Unified Manager
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Aff A700s Firmware -
Netapp Fas8300 Firmware -
Netapp Fas8700 Firmware -
Netapp Aff A400 Firmware -
Netapp H610s Firmware -
7.8
CVSSv3
CVE-2012-4576
FreeBSD: Input Validation Flaw allows local users to gain elevated privileges
Freebsd Freebsd 7.4
Freebsd Freebsd 8.3
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.8
CVSSv3
CVE-2019-0061
The management daemon (MGD) is responsible for all configuration and management operations in Junos OS. The Junos CLI communicates with MGD over an internal unix-domain socket and is granted special permission to open this protected mode socket. Due to a misconfiguration of the i...
Juniper Junos 15.1x49
Juniper Junos 15.1x53
Juniper Junos 16.1
Juniper Junos 16.2
Juniper Junos 17.1
Juniper Junos 17.2
Juniper Junos 17.3
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
7.8
CVSSv3
CVE-2019-5603
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2019-5607
In FreeBSD 12.0-STABLE before r350222, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350223, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, rights transmitted over a domain socket did not properly release a reference on transmissio...
Freebsd Freebsd 12.0
Freebsd Freebsd 11.2
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2019-5606
In FreeBSD 12.0-STABLE before r349805, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r349806, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, code which handles close of a descriptor created by posix_openpt fails to undo a signal con...
Freebsd Freebsd 12.0
Freebsd Freebsd 11.2
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2017-1085
In FreeBSD prior to 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted executable could be exploited to execute arbitrary code in the user context.
Freebsd Freebsd
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »