Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2020/02/12 12:0 a.m.•34 views

ansible - subversion password leak from PID

Borja Tarraso reports: A flaw was found in Ansible 2.7.16 and prior, 2.8.8 and prior, and 2.9.5 and prior when a password is set with the argument "password" of svn module, it is used on svn command line, disclosing to other users within the same node. An attacker could take advantage by reading...

3.9CVSS1.8AI score0.00358EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2020/01/02 12:0 a.m.•34 views

Gitlab -- Multiple Vulnerabilities

The GitLab Team reports: Group Maintainers Can Update/Delete Group Runners Using API GraphQL Queries Can Hang the Application Unauthorized Users Have Access to Milestones of Releases Private Group Name Revealed Through Protected Tags API Users Can Publish Reviews on Locked Merge Requests DoS in t...

5.3CVSS4.9AI score0.01107EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/01/02 12:0 a.m.•34 views

glpi -- Public GLPIKEY can be used to decrypt any data

MITRE Corporation reports: GLPI before before version 9.4.6 has a vulnerability involving a default encryption key. GLPIKEY is public and is used on every instance. This means anyone can decrypt sensitive data stored using this key. It is possible to change the key before installing GLPI. But on...

7.2CVSS1.2AI score0.01426EPSS
Exploits2References2
FreeBSD
FreeBSD
•added 2019/12/19 12:0 a.m.•34 views

Pillow -- Multiple vulnerabilities

Pillow developers report: This release addresses several security problems, as well as addressing CVE-2019-19911. CVE-2019-19911 is regarding FPX images. If an image reports that it has a large number of bands, a large amount of resources will be used when trying to process the image. This is fix...

9.8CVSS1.9AI score0.04212EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/12/06 12:0 a.m.•34 views

OpenSSL -- Overflow vulnerability

The OpenSSL project reports: rsaz512sqr overflow bug on x8664 CVE-2019-1551 Low There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, a...

5.3CVSS2.3AI score0.14298EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/08/29 12:0 a.m.•34 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Kubernetes Integration Server-Side Request Forgery Server-Side Request Forgery in Jira Integration Improved Protection Against Credential Stuffing Attacks Markdown Clientside Resource Exhaustion Pipeline Status Disclosure Group Runner Authorization Issue CI Metrics Disclosure User...

9.8CVSS1AI score0.03073EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2019/08/06 12:0 a.m.•34 views

FreeBSD -- ICMPv6 / MLDv2 out-of-bounds memory access

Problem Description: The ICMPv6 input path incorrectly handles cases where an MLDv2 listener query packet is internally fragmented across multiple mbufs. Impact: A remote attacker may be able to cause an out-of-bounds read or write that may cause the kernel to attempt to access an unmapped page a...

9.8CVSS1.9AI score0.02128EPSS
Exploits0
FreeBSD
FreeBSD
•added 2019/06/19 12:0 a.m.•34 views

FreeBSD -- Resource exhaustion in non-default RACK TCP stack

Problem Description: While processing acknowledgements, the RACK code uses several linked lists to maintain state entries. A malicious attacker can cause the lists to grow unbounded. This can cause an expensive list traversal on every packet being processed, leading to resource exhaustion and a...

7.8CVSS3.9AI score0.05226EPSS
Exploits1
FreeBSD
FreeBSD
•added 2019/04/10 12:0 a.m.•34 views

FreeBSD -- EAP-pwd missing commit validation

Problem Description: EAP-pwd implementation in hostapd EAP server and wpasupplicant EAP peer does not to validate the received scalar and element values in EAP-pwd-Commit messages properly. This could result in attacks that would be able to complete EAP-pwd authentication exchange without the...

0.5AI score
Exploits0
FreeBSD
FreeBSD
•added 2019/04/09 12:0 a.m.•34 views

Flash Player -- multiple vulnerabilities

Adobe reports: This update resolves a use-after-free vulnerability that could lead to arbitrary code execution CVE-2019-7096. This update resolves an out-of-bounds read vulnerability that could lead to information disclosure CVE-2019-7108...

10CVSS2.5AI score0.06376EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/03/11 12:0 a.m.•34 views

Dovecot -- Multiple vulnerabilities

Aki Tuomi reports: Submission-login crashes with signal 11 due to null pointer access when authentication is aborted by disconnecting. This can lead to denial-of-service attack by persistent attackers. Aki Tuomi reports: Submission-login crashes when authentication is started over TLS secured...

7.5CVSS3AI score0.02433EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2019/01/02 12:0 a.m.•34 views

rdesktop - critical - Remote Code Execution

Fix memory corruption in processbitmapdata - CVE-2018-8794 Fix remote code execution in processbitmapdata - CVE-2018-8795 Fix remote code execution in processplane - CVE-2018-8797 Fix Denial of Service in mcsrecvconnectresponse - CVE-2018-20175 Fix Denial of Service in mcsparsedomainparams -...

9.8CVSS2.9AI score0.08214EPSS
Exploits9References1
FreeBSD
FreeBSD
•added 2018/12/12 12:0 a.m.•34 views

chromium -- Use after free in PDFium

Google Chrome Releases reports: 1 security fix contributed by external researches: High CVE-2018-17481: Use after free in PDFium...

8.8CVSS0.7AI score0.01606EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/08/14 12:0 a.m.•34 views

samba -- multiple vulnerabilities

The samba project reports: All versions of Samba from 4.0.0 onwards are vulnerable to infinite query recursion caused by CNAME loops. Any dns record can be added via ldap by an unprivileged user using the ldbadd tool, so this is a security issue. When configured to accept smart-card authenticatio...

7.5CVSS0.9AI score0.05192EPSS
Exploits1References6
FreeBSD
FreeBSD
•added 2018/05/28 12:0 a.m.•34 views

taglib -- heap-based buffer over-read via a crafted audio file

Webin security lab - dbapp security Ltd reports: The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib 1.11.1 allows remote attackers to cause information disclosure heap-based buffer over-read via a crafted audio file...

6.5CVSS5.1AI score0.02847EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2018/05/02 12:0 a.m.•34 views

p7zip -- usage of uninitialized memory

NVD reports: Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage of uninitialized memory, allowing remote attackers to cause a denial of service segmentation fault or execute arbitrary code via a crafted RAR archive...

7.8CVSS7.3AI score0.04666EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2018/04/11 12:0 a.m.•34 views

roundcube -- IMAP command injection vulnerability

Upstream reports: This update primarily fixes a recently discovered IMAP-cmd-injection vulnerability caused by insufficient input validation within the archive plugin. Details about the vulnerability are published under CVE-2018-9846...

8.8CVSS2.2AI score0.02289EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/04/04 12:0 a.m.•34 views

FreeBSD -- ipsec crash or denial of service

Problem Description: The length field of the option header does not count the size of the option header itself. This causes a problem when the length is zero, the count is then incremented by zero, which causes an infinite loop. In addition there are pointer/offset mistakes in the handling of IPv...

7.8CVSS7.6AI score0.04377EPSS
Exploits0
FreeBSD
FreeBSD
•added 2018/03/13 12:0 a.m.•34 views

Flash Player -- multiple vulnerabilities

Adobe reports: This update resolves a use-after-free vulnerability that could lead to remote code execution CVE-2018-4919. This update resolves a type confusion vulnerability that could lead to remote code execution CVE-2018-4920...

9.3CVSS9AI score0.07871EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/03/09 12:0 a.m.•35 views

mailman -- hardening against malicious listowners injecting evil HTML scripts

Mark Sapiro reports: Existing protections against malicious listowners injecting evil scripts into listinfo pages have had a few more checks added. A few more error messages have had their values HTML escaped. The hash generated when SUBSCRIBEFORMSECRET is set could have been the same as one...

5.4CVSS0.7AI score0.02048EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2018/01/23 12:0 a.m.•34 views

gcab -- stack overflow

Upstream reports: A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potentially, execute arbitrary code via a crafted .cab file...

7.8CVSS8.3AI score0.02185EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/12/13 12:0 a.m.•34 views

squid -- Vulnerable to Denial of Service attack

Louis Dion-Marcil reports: Due to incorrect pointer handling Squid is vulnerable to denial of service attack when processing ESI responses. This problem allows a remote server delivering certain ESI response syntax to trigger a denial of service for all clients accessing the Squid service. Due to...

7.6AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2017/10/27 12:0 a.m.•34 views

konversation -- crash in IRC message parsing

KDE reports: Konversation has support for colors in IRC messages. Any malicious user connected to the same IRC network can send a carefully crafted message that will crash the Konversation user client...

7.5CVSS7.3AI score0.02732EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/09/11 12:0 a.m.•34 views

libraw -- denial of service and remote code execution

libraw developers report: A Stack-based Buffer Overflow was discovered in xtransinterpolate in internal/dcrawcommon.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack...

9.8CVSS9.4AI score0.04336EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/08/29 12:0 a.m.•34 views

libtiff -- Improper Input Validation

libtiff developers report: There is a reachable assertion abort in the function TIFFWriteDirectoryTagSubifd in LibTIFF 4.0.8, related to tifdirwrite.c and a SubIFD tag. A crafted input will lead to a remote denial of service attack. There is a reachable assertion abort in the function...

6.5CVSS7.4AI score0.02631EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2017/08/29 12:0 a.m.•34 views

ncurses -- multiple issues

ncurses developers reports: There are multiple illegal address access issues and an infinite loop issue. Please refer to the CVE list for details...

7.5CVSS7AI score0.03896EPSS
Exploits7References7
FreeBSD
FreeBSD
•added 2017/08/02 12:0 a.m.•34 views

php-gd and gd -- Buffer over-read into uninitialized memory

PHP developers report: The GIF decoding function gdImageCreateFromGifCtx in gdgifin.c in the GD Graphics Library aka libgd, as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read 700 byt...

6.5CVSS2.4AI score0.03418EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/07/20 12:0 a.m.•34 views

Cacti -- Cross-site scripting (XSS) vulnerability in auth_profile.php

kimiizhang reports: Cross-site scripting XSS vulnerability in authprofile.php in Cacti 1.1.13 allows remote authenticated users to inject arbitrary web script or HTML via specially crafted HTTP Referer headers...

5.4CVSS5.6AI score0.01993EPSS
Exploits1References2
FreeBSD
FreeBSD
•added 2017/06/22 12:0 a.m.•34 views

tiff -- multiple vulnerabilities

Debian Security Advisory reports: Multiple vulnerabilities have been discovered in the libtiff library and the included tools, which may result in denial of service or the execution of arbitrary code...

8.6AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2017/06/21 12:0 a.m.•34 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team Reports: CVE-2017-6920: PECL YAML parser unsafe object handling. CVE-2017-6921: File REST resource does not properly validate CVE-2017-6922: Files uploaded by anonymous users into a private file system can be accessed by other anonymous users...

9.8CVSS1.7AI score0.20482EPSS
Exploits7
FreeBSD
FreeBSD
•added 2017/04/28 12:0 a.m.•34 views

roundcube -- arbitrary password resets

Roundcube reports: Roundcube Webmail allows arbitrary password resets by authenticated users. The problem is caused by an improperly restricted exec call in the virtualmin and sasl drivers of the password plugin...

8.8CVSS4.8AI score0.03471EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/04/19 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 29 security fixes in this release, including: 695826 High CVE-2017-5057: Type confusion in PDFium. Credit to Guang Gong of Alpha Team, Qihoo 360 694382 High CVE-2017-5058: Heap use after free in Print Preview. Credit to Khalil Zhani 684684 High CVE-2017-5059: Type...

8.8CVSS8AI score0.03362EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/03/20 12:0 a.m.•34 views

gitlab -- Various security issues

GitLab reports: Information Disclosure in Issue and Merge Request Trackers During an internal code review a critical vulnerability in the GitLab Issue and Merge Request trackers was discovered. This vulnerability could allow a user with access to assign ownership of an issue or merge request to...

6.3CVSS6.3AI score0.01057EPSS
Exploits2References1
FreeBSD
FreeBSD
•added 2017/03/17 12:0 a.m.•34 views

NSS -- multiple vulnerabilities

Mozilla Foundation reports: An out-of-bounds write during Base64 decoding operation in the Network Security Services NSS library due to insufficient memory being allocated to the buffer. This results in a potentially exploitable crash. The NSS library has been updated to fix this issue to address...

8AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2017/02/14 12:0 a.m.•34 views

NVIDIA UNIX driver -- multiple vulnerabilities in the kernel mode layer handler

NVIDIA Unix security team reports: NVIDIA GPU Display Driver contains vulnerabilities in the kernel mode layer handler where multiple integer overflows, improper access control, and improper validation of a user input may cause a denial of service or potential escalation of privileges...

8.8CVSS7.2AI score0.00389EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/12/21 12:0 a.m.•34 views

cURL -- buffer overflow

The cURL project reports: printf floating point buffer overflow libcurl's implementation of the printf functions triggers a buffer overflow when doing a large floating point output. The bug occurs when the conversion outputs more than 255 bytes...

8.1CVSS4.2AI score0.04935EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/12/01 12:0 a.m.•34 views

dovecot -- Dovecot DoS when passdb dict was used for authentication

Timo Sirainen reports: passdb/userdb dict: Don't double-expand %variables in keys. If dict was used as the authentication passdb, using specially crafted %variables in the username could be used to cause DoS...

7.5CVSS7.5AI score0.0464EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/11/24 12:0 a.m.•34 views

libvncserver -- multiple buffer overflows

libvnc server reports: Two unrelated buffer overflows can be used by a malicious server to overwrite parts of the heap and crash the client or possibly execute arbitrary code...

2.5AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2016/11/01 12:0 a.m.•34 views

django -- multiple vulnerabilities

The Django project reports: Today the Django team released Django 1.10.3, Django 1.9.11, and 1.8.16. These releases addresses two security issues detailed below. We encourage all users of Django to upgrade as soon as possible. User with hardcoded password created when running tests on Oracle DNS...

1.2AI score
Exploits0References1
FreeBSD
FreeBSD
•added 2016/10/27 12:0 a.m.•34 views

urllib3 -- certificate verification failure

urllib3 reports: CVE-2016-9015: Certification verification failure...

3.7CVSS1.5AI score0.00775EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/08/11 12:0 a.m.•34 views

PostgreSQL -- Denial-of-Service and Code Injection Vulnerabilities

PostgreSQL project reports: Security Fixes nested CASE expressions + database and role names with embedded special characters CVE-2016-5423: certain nested CASE expressions can cause the server to crash. CVE-2016-5424: database and role names with embedded special characters can allow code...

8.3CVSS4.4AI score0.05962EPSS
Exploits0
FreeBSD
FreeBSD
•added 2016/04/28 12:0 a.m.•34 views

botan -- multiple vulnerabilities

Jack Lloyd reports: Botan 1.10.13 has been released backporting some side channel protections for ECDSA signatures CVE-2016-2849 and PKCS 1 RSA decryption CVE-2015-7827...

7.5CVSS7.8AI score0.02443EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/02/08 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 6 security fixes in this release, including: 546677 High CVE-2016-1622: Same-origin bypass in Extensions. Credit to anonymous. 577105 High CVE-2016-1623: Same-origin bypass in DOM. Credit to Mariusz Mlynski. 509313 Medium CVE-2016-1625: Navigation bypass in Chrome...

8.8CVSS2AI score0.01341EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2016/01/28 12:0 a.m.•34 views

phpmyadmin -- XSS vulnerability in SQL editor

The phpMyAdmin development team reports: With a crafted SQL query, it is possible to trigger an XSS attack in the SQL editor. We consider this vulnerability to be non-critical. This vulnerability can be triggered only by someone who is logged in to phpMyAdmin, as the usual token protection preven...

5.4CVSS3.3AI score0.01531EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/01/28 12:0 a.m.•34 views

phpmyadmin -- Multiple XSS vulnerabilities

The phpMyAdmin development team reports: With a crafted table name it is possible to trigger an XSS attack in the database search page. With a crafted SET value or a crafted search query, it is possible to trigger an XSS attacks in the zoom search page. With a crafted hostname header, it is...

5.4CVSS1.4AI score0.01642EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/01/14 12:0 a.m.•34 views

FreeBSD -- SCTP ICMPv6 error message vulnerability

Problem Description: A lack of proper input checks in the ICMPv6 processing in the SCTP stack can lead to either a failed kernel assertion or to a NULL pointer dereference. In either case, a kernel panic will follow. Impact: A remote, unauthenticated attacker can reliably trigger a kernel panic i...

7.8CVSS1.6AI score0.13905EPSS
Exploits2
FreeBSD
FreeBSD
•added 2016/01/09 12:0 a.m.•34 views

atheme-services -- multiple vulnerabilities

Mitre reports: modules/chanserv/flags.c in Atheme before 7.2.7 allows remote attackers to modify the Anope FLAGS behavior by registering and dropping the 1 LIST, 2 CLEAR, or 3 MODIFY keyword nicks. Buffer overflow in the xmlrpccharencode function in modules/transport/xmlrpc/xmlrpclib.c in Atheme...

7.5CVSS7.3AI score0.02265EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2016/01/04 12:0 a.m.•34 views

dhcpcd -- multiple vulnerabilities

Nico Golde reports: heap overflow via malformed dhcp responses later in printoption via dhcpenvoption1 due to incorrect option length values. Exploitation is non-trivial, but I'd love to be proven wrong. invalid read/crash via malformed dhcp responses. not exploitable beyond DoS as far as I can...

1.8AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2015/12/16 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 2 security fixes in this release, including: 569486 CVE-2015-6792: Fixes from internal audits and fuzzing...

10CVSS9.1AI score0.03961EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2015/11/10 12:0 a.m.•34 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 520422 High CVE-2015-1302: Information leak in PDF viewer. Credit to Rob Wu...

7.5CVSS9AI score0.01864EPSS
Exploits0References1
Total number of security vulnerabilities5000