Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2020/02/04 12:0 a.m.•39 views

cacti -- multiple vulnerabilities

The Cacti developers reports: When guest users have access to realtime graphs, remote code could be executed CVE-2020-8813. Lack of escaping on some pages can lead to XSS exposure CVE-2020-7106. Remote Code Execution due to input validation failure in Performance Boost Debug Log CVE-2020-7237...

9.3CVSS3.4AI score0.73779EPSS
Exploits26References4
FreeBSD
FreeBSD
•added 2019/04/10 12:0 a.m.•39 views

Gitlab -- Group Runner Registration Token Exposure

Gitlab reports: Group Runner Registration Token Exposure...

6.5CVSS1.6AI score0.01821EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/04/10 12:0 a.m.•39 views

FreeBSD -- EAP-pwd side-channel attack

Problem Description: Potential side channel attacks in the SAE implementations used by both hostapd and wpasupplicant see CVE-2019-9494 and VU871675. EAP-pwd uses a similar design for deriving PWE from the password and while a specific attack against EAP-pwd is not yet known to be tested, there i...

5.9CVSS6.8AI score0.03739EPSS
Exploits0
FreeBSD
FreeBSD
•added 2019/03/29 12:0 a.m.•39 views

clamav -- multiple vulnerabilities

Clamav reports: An out-of-bounds heap read condition may occur when scanning PDF documents An out-of-bounds heap read condition may occur when scanning PE files An out-of-bounds heap write condition may occur when scanning OLE2 files An out-of-bounds heap read condition may occur when scanning...

9.8CVSS0.2AI score0.01839EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2019/03/04 12:0 a.m.•39 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: Arbitrary file read via MergeRequestDiff CSRF add Kubernetes cluster integration Blind SSRF in prometheus integration Merge request information disclosure IDOR milestone name information disclosure Burndown chart information disclosure Private merge request titles in public projec...

10CVSS2.5AI score0.02776EPSS
Exploits10References1
FreeBSD
FreeBSD
•added 2018/12/01 12:0 a.m.•39 views

joomla3 -- vulnerabilitiesw

JSST reports: Inadequate escaping in modbanners leads to a stored XSS vulnerability. Inadequate escaping in comcontact leads to a stored XSS vulnerability Inadequate checks at the Global Configuration Text Filter settings allowed a stored XSS. Inadequate checks at the Global Configuration helpurl...

6.1CVSS0.7AI score0.035EPSS
Exploits5References4
FreeBSD
FreeBSD
•added 2018/08/06 12:0 a.m.•39 views

FreeBSD -- Resource exhaustion in TCP reassembly

Problem Description: One of the data structures that holds TCP segments uses an inefficient algorithm to reassemble the data. This causes the CPU time spent on segment processing to grow linearly with the number of segments in the reassembly queue. Impact: An attacker who has the ability to send...

5.3CVSS0.6AI score0.03226EPSS
Exploits0
FreeBSD
FreeBSD
•added 2018/06/27 12:0 a.m.•39 views

www/py-requests -- Information disclosure vulnerability

The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network...

7.5CVSS3AI score0.07443EPSS
Exploits2References5
FreeBSD
FreeBSD
•added 2018/06/07 12:0 a.m.•39 views

Flash Player -- multiple vulnerabilities

Adobe reports: This update resolves a type confusion vulnerability that could lead to arbitrary code execution CVE-2018-4945. This update resolves an integer overflow vulnerability that could lead to information disclosure CVE-2018-5000. This update resolves an out-of-bounds read vulnerability th...

10CVSS3.1AI score0.25353EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/05/29 12:0 a.m.•39 views

Git -- Fix memory out-of-bounds and remote code execution vulnerabilities (CVE-2018-11233 and CVE-2018-11235)

The Git community reports: In affected versions of Git, code to sanity-check pathnames on NTFS can result in reading out-of-bounds memory. In affected versions of Git, remote code execution can occur. With a crafted .gitmodules file, a malicious project can execute an arbitrary script on a machin...

7.8CVSS3.2AI score0.49188EPSS
Exploits10References2
FreeBSD
FreeBSD
•added 2018/04/04 12:0 a.m.•39 views

FreeBSD -- vt console memory disclosure

Problem Description: Insufficient validation of user-provided font parameters can result in an integer overflow, leading to the use of arbitrary kernel memory as glyph data. Characters that reference this data can be displayed on the screen, effectively disclosing kernel memory. Impact:...

7.5CVSS7.3AI score0.02033EPSS
Exploits0
FreeBSD
FreeBSD
•added 2018/03/01 12:0 a.m.•39 views

PostgreSQL vulnerabilities

The PostgreSQL project reports: CVE-2018-1058: Uncontrolled search path element in pgdump and other client applications...

8.8CVSS7.9AI score0.14142EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/11/23 12:0 a.m.•39 views

exim -- remote DoS attack in BDAT processing

Exim developers team reports: The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service infinite loop and stack exhaustion via vectors involving BDAT commands and an improper check for a '.' character signifying the end of t...

7.5CVSS8.4AI score0.6332EPSS
Exploits7References1
FreeBSD
FreeBSD
•added 2017/10/12 12:0 a.m.•39 views

xorg-server -- multiple vulnerabilities

Adam Jackson reports: One regression fix since 1.19.4 mea culpa, and fixes for CVEs 2017-12176 through 2017-12187...

9.8CVSS9.3AI score0.0437EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/10/09 12:0 a.m.•39 views

zookeeper -- Denial Of Service

zookeeper developers report: Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests. Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from...

7.5CVSS7.7AI score0.73654EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/14 12:0 a.m.•39 views

ruby -- multiple vulnerabilities

Ruby blog: CVE-2017-0898: Buffer underrun vulnerability in Kernel.sprintf If a malicious format string which contains a precious specifier is passed and a huge minus value is also passed to the specifier, buffer underrun may be caused. In such situation, the result may contains heap, or the Ruby...

9.8CVSS9.4AI score0.16412EPSS
Exploits2References5
FreeBSD
FreeBSD
•added 2016/12/19 12:0 a.m.•39 views

xen-kernel -- x86: Mishandling of SYSCALL singlestep during emulation

The Xen Project reports: The typical behaviour of singlestepping exceptions is determined at the start of the instruction, with a DB trap being raised at the end of the instruction. SYSCALL and SYSRET, although we don't implement it behave differently because the typical behaviour allows userspac...

7.8CVSS7AI score0.00424EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/12/16 12:0 a.m.•39 views

squid -- multiple vulnerabilities

Squid security advisory 2016:10 reports: Due to incorrect comparison of request headers Squid can deliver responses containing private data to clients it should not have reached. This problem allows a remote attacker to discover private and sensitive information about another clients browsing...

7.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2016/11/28 12:0 a.m.•39 views

asterisk -- Authentication Bypass

The Asterisk project reports: The chansip channel driver has a liberal definition for whitespace when attempting to strip the content between a SIP header name and a colon character. Rather than following RFC 3261 and stripping only spaces and horizontal tabs, Asterisk treats any non-printable...

1.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2016/11/22 12:0 a.m.•39 views

xen-kernel -- x86 null segments not always treated as unusable

The Xen Project reports: The Xen x86 emulator erroneously failed to consider the unusability of segments when performing memory accesses. The intended behaviour is as follows: The user data segment %ds, %es, %fs and %gs selectors may be NULL in 32-bit to prevent access. In 64-bit, NULL has a...

7.8CVSS0.9AI score0.0045EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/10/18 12:0 a.m.•39 views

node.js -- multiple vulnerabilities

Node.js v6.9.0 LTS contains the following security fixes, specific to v6.x: Disable auto-loading of openssl.cnf: Don't automatically attempt to load an OpenSSL configuration file, from the OPENSSLCONF environment variable or from the default location for the current platform. Always triggering a...

6.5CVSS3AI score0.0186EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/09/14 12:0 a.m.•39 views

ImageMagick7 -- multiple vulnerabilities

Multiple sources report: CVE-2016-9298: heap overflow in WaveletDenoiseImage, fixed in ImageMagick7-7.0.3.6, discovered 2016-10-31 CVE-2016-8866: memory allocation failure in AcquireMagickMemory incomplete previous fix for CVE-2016-8862, not fixed yet with the release of this announcement,...

8.8CVSS2.3AI score0.04613EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2016/09/08 12:0 a.m.•39 views

xen-kernel -- x86: Disallow L3 recursive pagetable for 32-bit PV guests

The Xen Project reports: On real hardware, a 32-bit PAE guest must leave the USER and RW bit clear in L3 pagetable entries, but the pagetable walk behaves as if they were set. The L3 entries are cached in processor registers, and don't actually form part of the pagewalk. When running a 32-bit PV...

8.2CVSS2AI score0.00402EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/07/20 12:0 a.m.•39 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 48 security fixes in this release, including: 610600 High CVE-2016-1706: Sandbox escape in PPAPI. Credit to Pinkie Pie xisigr of Tencent's Xuanwu Lab 613949 High CVE-2016-1708: Use-after-free in Extensions. Credit to Adam Varsan 614934 High CVE-2016-1709:...

9.6CVSS1.1AI score0.0246EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2016/06/23 12:0 a.m.•39 views

libarchive -- multiple vulnerabilities

Hanno Bock and Cisco Talos report: Out of bounds heap read in RAR parser Signed integer overflow in ISO parser TALOS-2016-0152 CVE-2016-4300: 7-Zip readSubStreamsInfo Integer Overflow TALOS-2016-0153 CVE-2016-4301: mtree parsedevice Stack Based Buffer Overflow TALOS-2016-0154 CVE-2016-4302:...

7.8CVSS7AI score0.04919EPSS
Exploits7References4
FreeBSD
FreeBSD
•added 2016/06/02 12:0 a.m.•39 views

xen-tools -- Unsanitised guest input in libxl device handling code

The Xen Project reports: Various parts of libxl device-handling code inappropriately use information from partially guest controlled areas of xenstore. A malicious guest administrator can cause denial of service by resource exhaustion. A malicious guest administrator can confuse and/or deny servi...

6.8CVSS1.9AI score0.00399EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/05/23 12:0 a.m.•39 views

xen-tools -- Unrestricted qemu logging

The Xen Project reports: When the libxl toolstack launches qemu for HVM guests, it pipes the output of stderr to a file in /var/log/xen. This output is not rate-limited in any way. The guest can easily cause qemu to print messages to stderr, causing this file to become arbitrarily large. The disk...

6.5CVSS6.8AI score0.00471EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/05/11 12:0 a.m.•39 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 5 security fixes in this release, including: 605766 High CVE-2016-1667: Same origin bypass in DOM. Credit to Mariusz Mlynski. 605910 High CVE-2016-1668: Same origin bypass in Blink V8 bindings. Credit to Mariusz Mlynski. 606115 High CVE-2016-1669: Buffer overflow i...

9.3CVSS1.2AI score0.04227EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2016/04/28 12:0 a.m.•39 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 9 security fixes in this release, including: 574802 High CVE-2016-1660: Out-of-bounds write in Blink. Credit to Atte Kettunen of OUSPG. 601629 High CVE-2016-1661: Memory corruption in cross-process frames. Credit to Wadih Matar. 603732 High CVE-2016-1662:...

10CVSS1.2AI score0.03881EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/04/18 12:0 a.m.•39 views

xen-kernel -- x86 shadow pagetables: address width overflow

The Xen Project reports: In the x86 shadow pagetable code, the guest frame number of a superpage mapping is stored in a 32-bit field. If a shadowed guest can cause a superpage mapping of a guest-physical address at or above 2^44 to be shadowed, the top bits of the address will be lost, causing an...

8.8CVSS0.4AI score0.00455EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/02/23 12:0 a.m.•39 views

libssh -- weak Diffie-Hellman secret generation

Andreas Schneider reports: libssh versions 0.1 and above have a bits/bytes confusion bug and generate an abnormally short ephemeral secret for the diffie-hellman-group1 and diffie-hellman-group14 key exchange methods. The resulting secret is 128 bits long, instead of the recommended sizes of 1024...

5.9CVSS6.2AI score0.02431EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/11/27 12:0 a.m.•39 views

ffmpeg -- multiple vulnerabilities

NVD reports: The updatedimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service race conditi...

7.5CVSS9.5AI score0.02412EPSS
Exploits0References9
FreeBSD
FreeBSD
•added 2015/11/20 12:0 a.m.•39 views

libxml2 -- multiple vulnerabilities

reports: CVE-2015-5312 Another entity expansion issue David Drysdale. CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey David Drysdale. CVE-2015-7498 Avoid processing entities after encoding conversion failures Daniel Veillard. CVE-2015-7499 1 Add xmlHaltParser to stop the...

7.1CVSS8.4AI score0.0721EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2015/10/29 12:0 a.m.•39 views

xen-kernel -- Uncontrolled creation of large page mappings by PV guests

The Xen Project reports: The code to validate level 2 page table entries is bypassed when certain conditions are satisfied. This means that a PV guest can create writable mappings using super page mappings. Such writable mappings can violate Xen intended invariants for pages which Xen is supposed...

7.2CVSS7.9AI score0.00427EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/10/23 12:0 a.m.•39 views

phpMyAdmin -- Content spoofing vulnerability

The phpMyAdmin development team reports: This vulnerability allows an attacker to perform a content spoofing attack using the phpMyAdmin's redirection mechanism to external sites. We consider this vulnerability to be non critical since the spoofed content is escaped and no HTML injection is...

5CVSS6.7AI score0.02624EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/10/04 12:0 a.m.•39 views

lldpd -- Buffer overflow/Denial of service

The lldpd developer Vincent Bernat reports: A buffer overflow may allow arbitrary code execution only if hardening was disabled. Malformed packets should not make lldpd crash. Ensure we can handle them by not using assert in this part...

9.8CVSS9.3AI score0.05493EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/09/21 12:0 a.m.•39 views

flash -- multiple vulnerabilities

Adobe reports: These updates resolve a type confusion vulnerability that could lead to code execution CVE-2015-5573. These updates resolve use-after-free vulnerabilities that could lead to code execution CVE-2015-5570, CVE-2015-5574, CVE-2015-5581, CVE-2015-5584, CVE-2015-6682. These updates...

10CVSS7.5AI score0.45511EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2015/06/24 12:0 a.m.•39 views

apache22 -- chunk header parsing defect

Apache Foundation reports: CVE-2015-3183 core: Fix chunk header parsing defect. Remove aprbrigadeflatten, buffering and duplicated code from the HTTPIN filter, parse chunks in a single pass with zero copy. Limit accepted chunk-size to 2^63-1 and be strict about chunk-ext authorized characters...

5CVSS6.7AI score0.73327EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2015/06/09 12:0 a.m.•39 views

cups -- multiple vulnerabilities

CUPS development team reports: The new release addresses two security vulnerabilities, add localizations for German and Russian, and includes several general bug fixes. Changes include: Security: Fixed CERT VU 810572/CVE-2015-1158/CVE-2015-1159 exploiting the dynamic linker STR 4609 Security: The...

10CVSS5.4AI score0.29913EPSS
Exploits9References2
FreeBSD
FreeBSD
•added 2015/05/12 12:0 a.m.•39 views

wireshark -- multiple vulnerabilities

Wireshark development team reports: The following vulnerabilities have been fixed. wnpa-sec-2015-12 The LBMR dissector could go into an infinite loop. Bug 11036 CVE-2015-3808, CVE-2015-3809 wnpa-sec-2015-13 The WebSocket dissector could recurse excessively. Bug 10989 CVE-2015-3810 wnpa-sec-2015-1...

7.8CVSS6.8AI score0.03731EPSS
Exploits0References8
FreeBSD
FreeBSD
•added 2015/04/14 12:0 a.m.•39 views

Adobe Flash Player -- critical vulnerabilities

Adobe reports: Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. Adobe is aware of a report that an exploit for CVE-2015-3043 exists in...

10CVSS7.6AI score0.95184EPSS
Exploits11References1
FreeBSD
FreeBSD
•added 2015/03/31 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA-2015-30 Miscellaneous memory safety hazards rv:37.0 / rv:31.6 MFSA-2015-31 Use-after-free when using the Fluendo MP3 GStreamer plugin MFSA-2015-32 Add-on lightweight theme installation approval bypassed through MITM attack MFSA-2015-33 resource:// documents can...

7.5CVSS9.8AI score0.67465EPSS
Exploits4References14
FreeBSD
FreeBSD
•added 2015/03/12 12:0 a.m.•39 views

ffmpeg -- multiple vulnerabilities

Please reference CVE/URL list for details...

8.8CVSS7.8AI score0.05739EPSS
Exploits1References13
FreeBSD
FreeBSD
•added 2015/01/12 12:0 a.m.•39 views

rest-client -- plaintext password disclosure

The open sourced vulnerability database reports: REST Client for Ruby contains a flaw that is due to the application logging password information in plaintext. This may allow a local attacker to gain access to password information...

2.1CVSS9.2AI score0.00373EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/12/08 12:0 a.m.•39 views

bind -- denial of service vulnerability

ISC reports: We have today posted updated versions of 9.9.6 and 9.10.1 to address a significant security vulnerability in DNS resolution. The flaw was discovered by Florian Maury of ANSSI, and applies to any recursive resolver that does not support a limit on the number of recursions...

7.8CVSS8.4AI score0.65683EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2014/11/21 12:0 a.m.•39 views

asterisk -- Multiple vulnerabilities

The Asterisk project reports: AST-2014-014 - High call load may result in hung channels in ConfBridge. AST-2014-017 - Permission escalation through ConfBridge actions/dialplan functions...

6.5CVSS6.7AI score0.02357EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/09/28 12:0 a.m.•39 views

fish -- local privilege escalation and remote code execution

Fish developer David Adam reports: This release fixes a number of local privilege escalation vulnerability and one remote code execution vulnerability...

7.8CVSS8.8AI score0.0044EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2014/09/23 12:0 a.m.•39 views

libvncserver -- multiple security vulnerabilities

Nicolas Ruff reports: Integer overflow in MallocFrameBuffer on client side. Lack of malloc return value checking on client side. Server crash on a very large ClientCutText message. Server crash when scaling factor is set to zero. Multiple stack overflows in File Transfer feature...

7.5CVSS8.9AI score0.08272EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2014/08/06 12:0 a.m.•39 views

subversion -- several vulnerabilities

Subversion Project reports: Using the Serf RA layer of Subversion for HTTPS uses the aprfnmatch API to handle matching wildcards in certificate Common Names and Subject Alternate Names. However, aprfnmatch is not designed for this purpose. Instead it is designed to behave like common shell...

4CVSS8.3AI score0.07495EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2014/07/22 12:0 a.m.•39 views

mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2014-66 IFRAME sandbox same-origin access through redirect MFSA 2014-65 Certificate parsing broken by non-standard character encoding MFSA 2014-64 Crash in Skia library when scaling high quality images MFSA 2014-63 Use-after-free while when manipulating...

10CVSS10AI score0.06109EPSS
Exploits0References12
Total number of security vulnerabilities5000