Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2020-25705
A flaw in ICMP packets in the Linux kernel may allow an malicious user to quickly scan open UDP ports. This flaw allows an off-path remote malicious user to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affe...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
1 Github repository
7.2
CVSSv2
CVE-2020-24718
bhyve, as used in FreeBSD up to and including 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user in a container on an Intel system, who can gain...
Freebsd Freebsd
Freebsd Freebsd 11.3
Freebsd Freebsd 11.4
Freebsd Freebsd 12.0
Freebsd Freebsd 12.1
Omniosce Omnios
Openindiana Openindiana
Netapp Clustered Data Ontap -
9
CVSSv2
CVE-2020-24045
A sandbox escape issue exists in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. The restricted shell can be bypassed by presenting a fake vmware-tools ISO image to the guest vi...
Titanhq Spamtitan 7.07
4.9
CVSSv2
CVE-2020-24385
In MidnightBSD prior to 1.2.6 and 1.3 before August 2020, and FreeBSD prior to 7, a NULL pointer dereference was found in the Linux emulation layer that allows malicious users to crash the running kernel. During binary interaction, td->td_emuldata in sys/compat/linux/linux_emu...
Midnightbsd Midnightbsd
Freebsd Freebsd
4.9
CVSSv2
CVE-2020-24863
A memory corruption vulnerability was found in the kernel function kern_getfsstat in MidnightBSD prior to 1.2.7 and 1.3 through 2020-08-19, and FreeBSD up to and including 11.4, that allows an malicious user to trigger an invalid free and crash the system via a crafted size value...
Midnightbsd Midnightbsd
Freebsd Freebsd
4.6
CVSSv2
CVE-2020-24716
OpenZFS prior to 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories.
Openzfs Openzfs
7.2
CVSSv2
CVE-2020-24717
OpenZFS prior to 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777.
Openzfs Openzfs
4.6
CVSSv2
CVE-2020-7459
In FreeBSD 12.1-STABLE before r362166, 12.1-RELEASE before p8, 11.4-STABLE before r362167, 11.4-RELEASE before p2, and 11.3-RELEASE before p12, missing length validation code common to mulitple USB network drivers allows a malicious USB device to write beyond the end of an alloca...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
Freebsd Freebsd 11.4
4.4
CVSSv2
CVE-2020-7460
In FreeBSD 12.1-STABLE before r363918, 12.1-RELEASE before p8, 11.4-STABLE before r363919, 11.4-RELEASE before p2, and 11.3-RELEASE before p12, the sendmsg system call in the compat32 subsystem on 64-bit platforms has a time-of-check to time-of-use vulnerability allowing a mailci...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
Freebsd Freebsd 11.4
2 Github repositories
7.5
CVSSv2
CVE-2020-7458
In FreeBSD 12.1-STABLE before r362281, 11.4-STABLE before r362281, and 11.4-RELEASE before p1, long values in the user-controlled PATH environment variable cause posix_spawnp to write beyond the end of the heap allocated stack possibly leading to arbitrary code execution.
Freebsd Freebsd 11.4
Freebsd Freebsd 12.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »