Freebsd

Freebsd

509 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2015-2923

  • EPSS 1.37%
  • Veröffentlicht 20.02.2020 04:15:10
  • Zuletzt bearbeitet 21.11.2024 02:28:19

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in FreeBSD through 10.1 allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message.

9.8

CVE-2014-3879

  • EPSS 1.49%
  • Veröffentlicht 18.02.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 02:09:02

OpenPAM Nummularia 9.2 through 10.0 does not properly handle the error reported when an include directive refers to a policy that does not exist, which causes the loaded policy chain to no be discarded and allows context-dependent attackers to bypass...

9.8

CVE-2019-5613

  • EPSS 0.22%
  • Veröffentlicht 18.02.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:45:14

In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level protocol in use over ipsec, this could allow an act...

9.8

CVE-2020-7450

  • EPSS 1.02%
  • Veröffentlicht 18.02.2020 16:15:11
  • Zuletzt bearbeitet 21.11.2024 05:37:10

In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r357214, and 11.3-RELEASE before 11.3-RELEASE-p6, URL handling in libfetch with URLs containing username and/or passw...

3.3

CVE-2019-15875

  • EPSS 0.12%
  • Veröffentlicht 18.02.2020 16:15:10
  • Zuletzt bearbeitet 21.11.2024 04:29:39

In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r354735, and 11.3-RELEASE before 11.3-RELEASE-p6, due to incorrect initialization of a stack data structure, core dum...

7.8

CVE-2011-3336

Exploit
  • EPSS 24.64%
  • Veröffentlicht 12.02.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 01:30:17

regcomp in the BSD implementation of libc is vulnerable to denial of service due to stack exhaustion.

7.4

CVE-2019-14899

  • EPSS 0.05%
  • Veröffentlicht 11.12.2019 15:15:14
  • Zuletzt bearbeitet 21.11.2024 04:27:38

A vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent user, to determine if a connected user is using a VPN, make positive inferences about the websites they are visiti...

7.8

CVE-2012-4576

  • EPSS 0.1%
  • Veröffentlicht 02.12.2019 18:15:10
  • Zuletzt bearbeitet 21.11.2024 01:43:10

FreeBSD: Input Validation Flaw allows local users to gain elevated privileges

7.5

CVE-2011-2480

  • EPSS 0.42%
  • Veröffentlicht 27.11.2019 19:15:11
  • Zuletzt bearbeitet 21.11.2024 01:28:22

Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allows a local unprivileged user to cause the kernel t...

7.8

CVE-2019-5612

  • EPSS 0.3%
  • Veröffentlicht 30.08.2019 09:15:21
  • Zuletzt bearbeitet 21.11.2024 04:45:14

In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r351265, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, the kernel driver for /dev/midistat implements a read handler that...