Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freebsd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0752
Buffer overflows in brouted in FreeBSD and possibly other OSes allows local users to gain root privileges via long command line arguments.
Freebsd Freebsd 4.0
Freebsd Freebsd 5.0
Freebsd Freebsd 3.5
Freebsd Freebsd 4.1
7.8
CVSSv3
CVE-2019-5603
In FreeBSD 12.0-STABLE before r350261, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350263, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, system calls operating on file descriptors as part of mqueuefs did not properly release the...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
7.8
CVSSv3
CVE-2019-5607
In FreeBSD 12.0-STABLE before r350222, 12.0-RELEASE prior to 12.0-RELEASE-p8, 11.3-STABLE before r350223, 11.3-RELEASE prior to 11.3-RELEASE-p1, and 11.2-RELEASE prior to 11.2-RELEASE-p12, rights transmitted over a domain socket did not properly release a reference on transmissio...
Freebsd Freebsd 12.0
Freebsd Freebsd 11.2
Freebsd Freebsd 11.0
Freebsd Freebsd 11.3
9.8
CVSSv3
CVE-2020-25583
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 when processing a DNSSL option, rtsold(8) decodes domain name labels per an encoding specified in RFC 1035 in which the first octet of eac...
Freebsd Freebsd 11.3
Freebsd Freebsd 11.4
Freebsd Freebsd 12.1
Freebsd Freebsd 12.2
7.8
CVSSv3
CVE-2016-1886
Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in FreeBSD 9.3 before p42, 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to obtain sensitive information from kernel memory, cause a denial of service (memory overwrite and ...
Freebsd Freebsd 10.2
Freebsd Freebsd 10.1
Freebsd Freebsd 9.3
Freebsd Freebsd 10.3
1 EDB exploit
NA
CVE-2013-5209
The sctp_send_initiate_ack function in sys/netinet/sctp_output.c in the SCTP implementation in the kernel in FreeBSD 8.3 up to and including 9.2-PRERELEASE does not properly initialize the state-cookie data structure, which allows remote malicious users to obtain sensitive inform...
Freebsd Freebsd 9.2
Freebsd Freebsd 8.3
Freebsd Freebsd 9.0
Freebsd Freebsd 9.1
NA
CVE-2014-8612
Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privileges via the stream id to the setsockopt function, when setting the SCTIP_SS_VAL...
Freebsd Freebsd 8.4
Freebsd Freebsd 9.3
Freebsd Freebsd 10.0
Freebsd Freebsd 10.1
1 EDB exploit
NA
CVE-2014-3952
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize the buffer between the header and data of a control message, which allows local users to obtain sensitive information from kernel memory via unspecified vectors.
Freebsd Freebsd 9.1
Freebsd Freebsd 8.4
Freebsd Freebsd 10.0
Freebsd Freebsd 9.2
NA
CVE-2014-3953
FreeBSD 8.4 before p14, 9.1 before p17, 9.2 before p10, and 10.0 before p7 does not properly initialize certain data structures, which allows local users to obtain sensitive information from kernel memory via a (1) SCTP_SNDRCV, (2) SCTP_EXTRCV, or (3) SCTP_RCVINFO SCTP cmsg or a ...
Freebsd Freebsd 9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 10.0
Freebsd Freebsd 8.4
7.5
CVSSv3
CVE-2015-1417
The inet module in FreeBSD 10.2x prior to 10.2-PRERELEASE, 10.2-BETA2-p2, 10.2-RC1-p1, 10.1x prior to 10.1-RELEASE-p16, 9.x prior to 9.3-STABLE, 9.3-RELEASE-p21, and 8.x prior to 8.4-STABLE, 8.4-RELEASE-p35 on systems with VNET enabled and at least 16 VNET instances allows remote...
Freebsd Freebsd 8.4
Freebsd Freebsd 9.3
Freebsd Freebsd 10.1
Freebsd Freebsd 10.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »