Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2010/11/02 12:0 a.m.•47 views

proftpd -- remote code execution vulnerability

Tippingpoint reports: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ProFTPD. Authentication is not required to exploit this vulnerability. The flaw exists within the proftpd server component which listens by default on TCP port 21. When readin...

10CVSS9.7AI score0.91303EPSS
Exploits10References1
FreeBSD
FreeBSD
•added 2009/09/10 12:0 a.m.•47 views

mozilla firefox -- multiple vulnerabilities

Mozilla Foundation reports: MFSA 2009-51 Chrome privilege escalation with FeedWriter MFSA 2009-50 Location bar spoofing via tall line-height Unicode characters MFSA 2009-49 TreeColumns dangling pointer vulnerability MFSA 2009-48 Insufficient warning for PKCS11 module installation and removal MFSA...

10CVSS9.6AI score0.06724EPSS
Exploits4References6
FreeBSD
FreeBSD
•added 2008/05/05 12:0 a.m.•47 views

mysql -- MyISAM table privileges security bypass vulnerability

SecurityFocus reports: MySQL is prone to a security-bypass vulnerability. An attacker can exploit this issue to overwrite existing table files in the MySQL data directory, bypassing certain security restrictions...

4.6CVSS6.4AI score0.02588EPSS
Exploits2
FreeBSD
FreeBSD
•added 2008/04/10 12:0 a.m.•47 views

python -- Integer Signedness Error in zlib Module

Justin Ferguson reports: Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow...

7.5CVSS6.2AI score0.22621EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2007/10/08 12:0 a.m.•47 views

png -- multiple vulnerabilities

A Secunia Advisory reports: Some vulnerabilities have been reported in libpng, which can be exploited by malicious people to cause a DoS Denial of Service. Certain errors within libpng, including a logical NOT instead of a bitwise NOT in pngtrtran.c, an error in the 16bit cheap transparency...

5CVSS7.4AI score0.04769EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2006/05/18 12:0 a.m.•47 views

drupal -- multiple vulnerabilities

The Drupal team reports: Vulnerability: XSS Vulnerability in taxonomy module It is possible for a malicious user to insert and execute XSS into terms, due to lack of validation on output of the page title. The fix wraps the display of terms in checkplain...

2.6CVSS5.8AI score0.02536EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2005/06/29 12:0 a.m.•47 views

drupal -- PHP code execution vulnerabilities

Kuba Zygmunt discovered a flaw in the input validation routines of Drupal's filter mechanism. An attacker could execute arbitrary PHP code on a target site when public comments or postings are allowed...

7.5CVSS6.7AI score0.79071EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2004/12/21 12:0 a.m.•47 views

ImageMagick -- PSD handler heap overflow vulnerability

An iDEFENSE Security Advisory reports: Remote exploitation of a buffer overflow vulnerability in The ImageMagick's Project's ImageMagick PSD image-decoding module could allow an attacker to execute arbitrary code. Exploitation may allow attackers to run arbitrary code on a victim's computer if th...

7.5CVSS7.3AI score0.04378EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2004/02/18 12:0 a.m.•47 views

many out-of-sequence TCP packets denial-of-service

FreeBSD does not limit the number of TCP segments that may be held in a reassembly queue. A remote attacker may conduct a low-bandwidth denial-of-service attack against a machine providing services based on TCP there are many such services, including HTTP, SMTP, and FTP. By sending many...

5CVSS6.4AI score0.03169EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2025/02/21 12:0 a.m.•46 views

FreeBSD -- Multiple vulnerabilities in OpenSSH

Problem Description: OpenSSH client host verification error CVE-2025-26465 ssh1 contains a logic error that allows an on-path attacker to impersonate any server during certain conditions when the VerifyHostKeyDNS option is enabled. OpenSSH server denial of service CVE-2025-26466 The OpenSSH clien...

6.8CVSS7.1AI score0.38474EPSS
Exploits5References2
FreeBSD
FreeBSD
•added 2024/10/16 12:0 a.m.•46 views

OpenSSL -- OOB memory access vulnerability

The OpenSSL project reports: Low-level invalid GF2^m parameters lead to OOB memory access CVE-2024-9143 Low Use of the low-level GF2^m elliptic curve APIs with untrusted explicit values for the field polynomial can lead to out-of-bounds memory reads or writes...

4.3CVSS6.9AI score0.05966EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/08/29 12:0 a.m.•46 views

openvpn -- 2.6.0...2.6.6 --fragment option division by zero crash, and TLS data leak

The OpenVPN community project team reports: CVE-2023-46849 OpenVPN versions between 2.6.0 and 2.6.6 incorrectly restore "--fragment" configuration in some circumstances, leading to a division by zero when "--fragment" is used. On platforms where division by zero is fatal, this will cause an OpenV...

9.8CVSS6.7AI score0.01982EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2023/06/21 12:0 a.m.•46 views

FreeBSD -- ssh-add does not honor per-hop destination constraints

Problem Description: When using ssh-add1 to add smartcard keys to ssh-agent1 with per-hop destination constraints, a logic error prevented the constraints from being sent to the agent resulting in keys being added to the agent without constraints. Impact: A malicious server could leverage the key...

9.8CVSS6.8AI score0.02216EPSS
Exploits0
FreeBSD
FreeBSD
•added 2023/02/16 12:0 a.m.•46 views

FreeBSD -- Multiple vulnerabilities in OpenSSL

Problem Description: X.400 address type confusion in X.509 GeneralName CVE-2023-0286 There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1STRING but the public structure definition for GENERALNAME incorrect...

7.5CVSS7AI score0.59501EPSS
Exploits0
FreeBSD
FreeBSD
•added 2022/11/07 12:0 a.m.•46 views

sudo -- Potential out-of-bounds write for small passwords

CVE.org reports: Sudo 1.8.0 through 1.9.12, with the crypt password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to sudo by entering a password of seven...

7.1CVSS6.7AI score0.00271EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2022/09/27 12:0 a.m.•46 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 20 security fixes, including: 1358907 High CVE-2022-3304: Use after free in CSS. Reported by Anonymous on 2022-09-01 1343104 High CVE-2022-3201: Insufficient validation of untrusted input in Developer Tools. Reported by NDevTK on 2022-07-09 1319229...

8.8CVSS0.00616EPSS
Exploits6References1
FreeBSD
FreeBSD
•added 2022/09/14 12:0 a.m.•46 views

expat -- Heap use-after-free vulnerability

Debian Security Advisory reports: Rhodri James discovered a heap use-after-free vulnerability in the doContent function in Expat, an XML parsing C library, which could result in denial of service or potentially the execution of arbitrary code, if a malformed XML file is processed...

8.1CVSS8.6AI score0.01673EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2022/09/07 12:0 a.m.•46 views

security/keycloak -- Multiple possible DoS attacks

CIRCL reports: CVE-2022-41966: XStream serializes Java objects to XML and back again. Versions prior to 1.4.20 may allow a remote attacker to terminate the application with a stack overflow error, resulting in a denial of service only via manipulation the processed input stream. CVE-2022-40151: I...

8.2CVSS5.2AI score0.08689EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2022/02/04 12:0 a.m.•46 views

cyrus-sasl -- Escape password for SQL insert/update commands

Cyrus SASL 2.1.x Release Notes New in 2.1.28 reports: Escape password for SQL insert/update commands...

8.8CVSS1.5AI score0.04123EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2021/01/21 12:0 a.m.•46 views

python -- Information disclosure via pydoc -p: /getfile?key=path allows to read arbitrary file on the filesystem

David Schwörer reports: Remove the getfile feature of the pydoc module which could be abused to read arbitrary files on the disk directory traversal vulnerability. Moreover, even source code of Python modules can contain sensitive data like passwords...

5.7CVSS3.9AI score0.01863EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2020/12/02 12:0 a.m.•46 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 8 security fixes, including: 1142331 High CVE-2020-16037: Use after free in clipboard. Reported by Ryoya Tsukasaki on 2020-10-26 1138683 High CVE-2020-16038: Use after free in media. Reported by Khalil Zhani on 2020-10-14 1149177 High CVE-2020-16039:...

9.3CVSS0.7AI score0.99595EPSS
Exploits14References1
FreeBSD
FreeBSD
•added 2020/11/02 12:0 a.m.•46 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: Path Traversal in LFS Upload Path traversal allows saving packages in arbitrary location Kubernetes agent API leaks private repos Terraform state deletion API exposes object storage URL Stored-XSS in error message of build-dependencies Git credentials persisted on disk Potential...

8.7CVSS4AI score0.68639EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/07/15 12:0 a.m.•46 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description High SECURITY-1868 / CVE-2020-2220 Stored XSS vulnerability in job build time trend High SECURITY-1901 / CVE-2020-2221 Stored XSS vulnerability in upstream cause High SECURITY-1902 / CVE-2020-2222 Stored XSS vulnerability in 'keep forever' badge icons High...

5.4CVSS0.2AI score0.01126EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/02/14 12:0 a.m.•46 views

webkit-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities...

9.3CVSS1.8AI score0.02633EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/11/08 12:0 a.m.•46 views

webkit2-gtk3 -- Multiple vulnerabilities

The WebKitGTK project reports multiple vulnerabilities...

9.3CVSS1.8AI score0.09543EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2019/10/01 12:0 a.m.•46 views

Xpdf -- Multiple Vulnerabilities

Xpdf 4.02 fixes two vulnerabilities. Both fixes have been backported to 3.04. An invalid memory access vulnerability in TextPage::findGaps in Xpdf 4.01 through a crafted PDF document can cause a segfault. An out of bounds write exists in TextPage::findGaps of Xpdf 4.01.01...

7.8CVSS2.2AI score0.01197EPSS
Exploits2References4
FreeBSD
FreeBSD
•added 2019/07/18 12:0 a.m.•46 views

Exim -- RCE in ${sort} expansion

Exim team report: A local or remote attacker can execute programs with root privileges - if you've an unusual configuration. If your configuration uses the $sort expansion for items that can be controlled by an attacker e.g. $localpart, $domain. The default config, as shipped by the Exim...

10CVSS3.1AI score0.08622EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/05/09 12:0 a.m.•46 views

PostgreSQL -- Selectivity estimators bypass row security policies

The PostgreSQL project reports: PostgreSQL maintains statistics for tables by sampling data available in columns; this data is consulted during the query planning process. Prior to this release, a user able to execute SQL queries with permissions to read a given column could craft a leaky operato...

4.3CVSS1.2AI score0.01085EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/02/20 12:0 a.m.•46 views

drupal -- Drupal core - Highly critical - Remote Code Execution

Drupal Security Team Some field types do not properly sanitize data from non-form sources. This can lead to arbitrary PHP code execution in some cases...

8.1CVSS2AI score0.91919EPSS
Exploits22References1
FreeBSD
FreeBSD
•added 2019/01/15 12:0 a.m.•46 views

Python -- NULL pointer dereference vulnerability

Python Changelog: bpo-35746: CVE-2019-5010 Fix a NULL pointer deref in ssl module. The cert parser did not handle CRL distribution points with empty DP or URI correctly. A malicious or buggy certificate can result into segfault. Vulnerability TALOS-2018-0758 reported by Colin Read and Nicolas Ede...

7.5CVSS1.6AI score0.20743EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2018/12/19 12:0 a.m.•46 views

FreeBSD -- bootpd buffer overflow

Problem Description: Due to insufficient validation of network-provided data it may be possible for a malicious attacker to craft a bootp packet which could cause a stack buffer overflow. Impact: It is possible that the buffer overflow could lead to a Denial of Service or remote code execution...

6.1CVSS4.5AI score0.01325EPSS
Exploits0
FreeBSD
FreeBSD
•added 2018/12/05 12:0 a.m.•46 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Critical SECURITY-595 Code execution through crafted URLs Medium SECURITY-904 Forced migration of user records Medium SECURITY-1072 Workspace browser allowed accessing files outside the workspace Medium SECURITY-1193 Potential denial of service through cron...

2.3AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2018/07/10 12:0 a.m.•46 views

mutt/neomutt -- multiple vulnerabilities

NeoMutt report: Description CVE-2018-14349NO Response Heap Overflow CVE-2018-14350INTERNALDATE Stack Overflow CVE-2018-14351STATUS Literal Length relative write CVE-2018-14352imapquotestring off-by-one stack overflow CVE-2018-14353imapquotestring int underflow CVE-2018-14354imapsubscribe Remote...

9.8CVSS4.3AI score0.06229EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/06/09 12:0 a.m.•46 views

sinatra -- XSS vulnerability

Sinatra blog: Sinatra had a critical vulnerability since v2.0.0. The purpose of this release is to fix CVE-2018-11627. The vulnerability is that XSS can be executed by using illegal parameters...

6.1CVSS4.1AI score0.02212EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2018/02/01 12:0 a.m.•46 views

Django -- information leakage

Django release notes: CVE-2018-6188: Information leakage in AuthenticationForm A regression in Django 1.11.8 made AuthenticationForm run its confirmloginallowed method even if an incorrect password is entered. This can leak information about a user, depending on what messages confirmloginallowed...

7.5CVSS7.6AI score0.04897EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/09/07 12:0 a.m.•46 views

GitLab -- multiple vulnerabilities

GitLab reports: Please reference CVE/URL list for details...

8.8CVSS8.4AI score0.02131EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/05/19 12:0 a.m.•46 views

OpenVPN -- several vulnerabilities

Samuli Seppänen reports: In May/June 2017 Guido Vranken threw a fuzzer at OpenVPN 2.4.2. In the process he found several vulnerabilities and reported them to the OpenVPN project. ... The first releases to have these fixes are OpenVPN 2.4.3 and 2.3.17. This is a list of fixed important...

9.8CVSS2.7AI score0.05539EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/01/25 12:0 a.m.•46 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 51 security fixes in this release Please reference CVE/URL list for details...

8.8CVSS6.4AI score0.02099EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2016/12/13 12:0 a.m.•46 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2016-9894: Buffer overflow in SkiaGL CVE-2016-9899: Use-after-free while manipulating DOM events and audio elements CVE-2016-9895: CSP bypass using marquee tag CVE-2016-9896: Use-after-free with WebVR CVE-2016-9897: Memory corruption in libGLES CVE-2016-9898:...

9.8CVSS0.4AI score0.21401EPSS
Exploits12References2
FreeBSD
FreeBSD
•added 2016/06/09 12:0 a.m.•46 views

wget -- HTTP to FTP redirection file name confusion vulnerability

Giuseppe Scrivano reports: On a server redirect from HTTP to a FTP resource, wget would trust the HTTP server and uses the name in the redirected URL as the destination filename...

8.8CVSS8.7AI score0.45935EPSS
Exploits8References1
FreeBSD
FreeBSD
•added 2016/05/18 12:0 a.m.•46 views

moodle -- multiple vulnerabilities

Marina Glancy reports: MSA-16-0013: Users are able to change profile fields that were locked by the administrator. MSA-16-0015: Information disclosure of hidden forum names and sub-names. MSA-16-0016: User can view badges of other users without proper permissions. MSA-16-0017: Course idnumber not...

8.8CVSS1.3AI score0.01595EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/05/17 12:0 a.m.•46 views

expat -- denial of service vulnerability on malformed input

Gustavo Grieco reports: The Expat XML parser mishandles certain kinds of malformed input documents, resulting in buffer overflows during processing and error reporting. The overflows can manifest as a segmentation fault or as memory corruption during a parse operation. The bugs allow for a denial...

9.8CVSS8.8AI score0.13802EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2016/03/09 12:0 a.m.•46 views

bind -- denial of service vulnerability

ISC reports: A problem parsing resource record signatures for DNAME resource records can lead to an assertion failure in resolver.c or db.c...

8.6CVSS8.7AI score0.621EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/03/08 12:0 a.m.•46 views

graphite2 -- multiple vulnerabilities

Mozilla Foundation reports: Security researcher Holger Fuhrmannek and Mozilla security engineer Tyson Smith reported a number of security vulnerabilities in the Graphite 2 library affecting version 1.3.5. The issue reported by Holger Fuhrmannek is a mechanism to induce stack corruption with a...

9.3CVSS1.1AI score0.04889EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2016/02/24 12:0 a.m.•46 views

squid -- remote DoS in HTTP response processing

Squid security advisory 2016:2 reports: Due to incorrect bounds checking Squid is vulnerable to a denial of service attack when processing HTTP responses. These problems allow remote servers delivering certain unusual HTTP response syntax to trigger a denial of service for all clients accessing t...

7.5CVSS1.9AI score0.31187EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/02/04 12:0 a.m.•46 views

py-pillow -- Buffer overflow in TIFF decoding code

The Pillow maintainers report: Pillow 3.1.0 and earlier when linked against libtiff = 4.0.0 on x64 may overflow a buffer when reading a specially crafted tiff file. Specifically, libtiff = 4.0.0 changed the return type of TIFFScanlineSize from int32 to machine dependent int32|64. If the scanline ...

6.5CVSS6.9AI score0.0236EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/11/03 12:0 a.m.•46 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2015-133 NSS and NSPR memory corruption issues MFSA 2015-132 Mixed content WebSocket policy bypass through workers MFSA 2015-131 Vulnerabilities found through code inspection MFSA 2015-130 JavaScript garbage collection crash with Java applet MFSA 2015-129 Certain...

9.8CVSS9.4AI score0.10238EPSS
Exploits0References18
FreeBSD
FreeBSD
•added 2015/09/09 12:0 a.m.•46 views

openldap -- denial of service vulnerability

Denis Andzakovic reports: By sending a crafted packet, an attacker may cause the OpenLDAP server to reach an assert9 9 statement, crashing the daemon...

5CVSS5.6AI score0.19984EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2015/06/17 12:0 a.m.•46 views

qemu -- code execution on host machine

Petr Matousek of Red Hat Inc. reports: Due converting PIO to the new memory read/write api we no longer provide separate I/O region lenghts for read and write operations. As a result, reading from PIT Mode/Command register will end with accessing pit-channels with invalid index and potentially...

6.9CVSS7.2AI score0.01594EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2014/11/25 12:0 a.m.•46 views

wordpress -- multiple vulnerabilities

MITRE reports: wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers to reset passwords by leveraging access to an e-mail account that received a password-reset message. wp-includes/http.php in WordPress before 3.7.5, 3.8...

6.8CVSS6.9AI score0.82702EPSS
Exploits7
Total number of security vulnerabilities5000