Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-7454
In FreeBSD 12.1-STABLE before r360971, 12.1-RELEASE before p5, 11.4-STABLE before r360971, 11.4-BETA1 before p1 and 11.3-RELEASE before p9, libalias does not properly validate packet length resulting in modules causing an out of bounds read/write condition if no checking was buil...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
Freebsd Freebsd 11.4
7.5
CVSSv2
CVE-2019-5614
In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE prior to 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE prior to 11.3-RELEASE-p8, incomplete packet data validation may result in accessing out-of-bounds memory leading to a kernel panic or other unpredictable res...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
Netapp Clustered Data Ontap -
7.5
CVSSv2
CVE-2019-15874
In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE prior to 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE prior to 11.3-RELEASE-p8, incomplete packet data validation may result in memory access after it has been freed leading to a kernel panic or other unpredicta...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.1
Netapp Clustered Data Ontap -
7.5
CVSSv2
CVE-2014-3879
OpenPAM Nummularia 9.2 up to and including 10.0 does not properly handle the error reported when an include directive refers to a policy that does not exist, which causes the loaded policy chain to no be discarded and allows context-dependent malicious users to bypass authenticat...
Freebsd Freebsd
7.5
CVSSv2
CVE-2019-5613
In FreeBSD 12.0-RELEASE prior to 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level protocol in use over ipsec, this could allow an action to be repeated.
Freebsd Freebsd 12.0
7.5
CVSSv2
CVE-2020-7450
In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE prior to 12.1-RELEASE-p2, 12.0-RELEASE prior to 12.0-RELEASE-p13, 11.3-STABLE before r357214, and 11.3-RELEASE prior to 11.3-RELEASE-p6, URL handling in libfetch with URLs containing username and/or password components is vulner...
Freebsd Freebsd 11.3
Freebsd Freebsd 12.0
Freebsd Freebsd 12.1
7.5
CVSSv2
CVE-2019-5608
In FreeBSD 12.0-STABLE before r350648, 12.0-RELEASE prior to 12.0-RELEASE-p9, 11.3-STABLE before r350650, 11.3-RELEASE prior to 11.3-RELEASE-p2, and 11.2-RELEASE prior to 11.2-RELEASE-p13, the ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is int...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Netapp Clustered Data Ontap -
7.5
CVSSv2
CVE-2019-5600
In FreeBSD 12.0-STABLE before r349622, 12.0-RELEASE prior to 12.0-RELEASE-p7, 11.3-PRERELEASE before r349624, 11.3-RC3 prior to 11.3-RC3-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p11, a bug in iconv implementation may allow an malicious user to write past the end of an output bu...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
7.5
CVSSv2
CVE-2019-12900
BZ2_decompress in decompress.c in bzip2 up to and including 1.0.6 has an out-of-bounds write when there are many selectors.
Bzip Bzip2
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Python Python
1 Github repository
7.5
CVSSv2
CVE-2018-17161
In FreeBSD prior to 11.2-STABLE(r348229), 11.2-RELEASE-p7, 12.0-STABLE(r342228), and 12.0-RELEASE-p1, insufficient validation of network-provided data in bootpd may make it possible for a malicious malicious user to craft a bootp packet which could cause a stack buffer overflow. ...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »