Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netbsd vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2017-1000375
NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows malicious users to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.
Netbsd Netbsd
1 EDB exploit
5
CVSSv2
CVE-2021-45484
In NetBSD up to and including 9.2, the IPv6 fragment ID generation algorithm employs a weak cryptographic PRNG.
Netbsd Netbsd
5
CVSSv2
CVE-2021-45488
In NetBSD up to and including 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.
Netbsd Netbsd
5
CVSSv2
CVE-2021-45487
In NetBSD up to and including 9.2, the IPv4 ID generation algorithm does not use appropriate cryptographic measures.
Netbsd Netbsd
7.5
CVSSv2
CVE-2017-1000374
A flaw exists in NetBSD's implementation of the stack guard page that allows malicious users to bypass it resulting in arbitrary code execution using certain setuid binaries. This affects NetBSD 7.1 and possibly earlier versions.
Netbsd Netbsd
7.5
CVSSv2
CVE-2017-1000378
The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows malicious users to consume arbitrary amounts of stack memory and manipulate sta...
Netbsd Netbsd
5
CVSSv2
CVE-2021-45489
In NetBSD up to and including 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG.
Netbsd Netbsd
7.5
CVSSv2
CVE-2002-0414
KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consult the Security Policy Database (SPD), which could cause a Security Gateway (SG) that does not use Encapsulating Security Payload (ESP) to forward forged IPv4 p...
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Openbsd Openbsd 2.6
Freebsd Freebsd 4.2
Freebsd Freebsd 4.4
Freebsd Freebsd 4.3
Freebsd Freebsd 4.5
Openbsd Openbsd 2.7
5
CVSSv2
CVE-2000-0440
NetBSD 1.4.2 and previous versions allows remote malicious users to cause a denial of service by sending a packet with an unaligned IP timestamp option.
Netbsd Netbsd 1.4.1
Freebsd Freebsd 3.4
Freebsd Freebsd 4.0
Freebsd Freebsd 5.0
Netbsd Netbsd 1.4.2
1 EDB exploit
1.2
CVSSv2
CVE-2006-5214
Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD prior to 20060212, X.Org prior to 20060225, and Solaris 8 through 10 prior to 20061006, causes a user's Xsession errors file to have weak permissions before a chmod is performed, which allows...
Netbsd Netbsd 3.99.15
Sun Solaris 10.0
Sun Sunos 5.8
Sun Solaris 9.0
Netbsd Netbsd 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »