Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
•added 2020/04/16 12:0 a.m.•31 views

webkit2-gtk3 -- Denial of service

The WebKitGTK project reports the following vulnerability. Processing maliciously crafted web content may lead to arbitrary code execution or application crash denial of service. Description: A memory corruption issue use-after-free was addressed with improved memory handling...

8.8CVSS2.9AI score0.02827EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/04/15 12:0 a.m.•31 views

chromium -- use after free

Google Chrome Releases reports: 1067851 Critical CVE-2020-6457: Use after free in speech recognizer. Reported by Leecraso and Guang Gong of Alpha Lab, Qihoo 360 on 2020-04-04...

9.6CVSS1AI score0.01236EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/04/07 12:0 a.m.•31 views

ceph14 -- multiple security issues

RedHat reports: ceph: secure mode of msgr2 breaks both confidentiality and integrity aspects for long-lived sessions. ceph: header-splitting in RGW GetObject has a possible XSS...

6.8CVSS1.7AI score0.01585EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2020/03/30 12:0 a.m.•31 views

glpi -- SQL injection for all helpdesk instances

MITRE Corporation reports: In GLPI before version 9.4.6, there is a SQL injection vulnerability for all helpdesk instances. Exploiting this vulnerability requires a technician account. This is fixed in version 9.4.6...

7.6CVSS3.6AI score0.01015EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/02/20 12:0 a.m.•31 views

WeeChat -- Multiple vulnerabilities

The WeeChat project reports: Buffer overflow when receiving a malformed IRC message 324 channel mode. CVE-2020-8955 Buffer overflow when a new IRC message 005 is received with longer nick prefixes. Crash when receiving a malformed IRC message 352 WHO...

9.8CVSS3AI score0.03684EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/02/13 12:0 a.m.•31 views

Gitlab -- Vulnerability

Gitlab reports: Incorrect membership handling of group sharing feature...

7.5CVSS1.9AI score0.01155EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2020/02/13 12:0 a.m.•31 views

PostgresSQL -- ALTER ... DEPENDS ON EXTENSION is missing authorization checks

The PostgreSQL project reports: Versions Affected: 9.6 - 12 The ALTER ... DEPENDS ON EXTENSION sub-commands do not perform authorization checks, which can allow an unprivileged user to drop any function, procedure, materialized view, index, or trigger under certain conditions. This attack is...

6.5CVSS7.6AI score0.01183EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/12/18 12:0 a.m.•31 views

NPM -- Multiple vulnerabilities

NPM reports: Global nodemodules Binary Overwrite Symlink reference outside of nodemodules Arbitrary File Write...

8.1CVSS2.2AI score0.03342EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/11/25 12:0 a.m.•31 views

Django -- multiple vulnerabilities

Django release reports: CVE-2019-19118: Privilege escalation in the Django admin. Since Django 2.1, a Django model admin displaying a parent model with related model inlines, where the user has view-only permissions to a parent model but edit permissions to the inline model, would display a...

6.5CVSS1.1AI score0.01656EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2019/10/07 12:0 a.m.•31 views

security/py-ecdsa -- multiple issues

py-ecdsa developers report: Fix CVE-2019-14853 - possible DoS caused by malformed signature decoding. Fix CVE-2019-14859 - signature malleability caused by insufficient checks of DER encoding...

9.1CVSS3AI score0.02505EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2019/08/12 12:0 a.m.•31 views

Gitlab -- Multiple Vulnerabilities

Gitlab reports: Insecure Authentication Methods Disabled for Grafana By Default Multiple Command-Line Flag Injection Vulnerabilities Insecure Cookie Handling on GitLab Pages...

9.8CVSS1.6AI score0.01996EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2019/08/11 12:0 a.m.•31 views

Nokogiri -- injection vulnerability

Nokogiri GitHub release: A command injection vulnerability in Nokogiri v1.10.3 and earlier allows commands to be executed in a subprocess by Ruby's Kernel.open method. Processes are vulnerable only if the undocumented method Nokogiri::CSS::Tokenizerloadfile is being passed untrusted user input...

9.8CVSS2.9AI score0.05899EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2019/08/05 12:0 a.m.•32 views

glpi -- Account takeover vulnerability

MITRE Corporation reports: GLPI through 9.4.3 is prone to account takeover by abusing the ajax/autocompletion.php autocompletion feature. The lack of correct validation leads to recovery of the token generated via the password reset functionality, and thus an authenticated attacker can set an...

8.8CVSS1.8AI score0.02234EPSS
Exploits1References3
FreeBSD
FreeBSD
•added 2019/02/06 12:0 a.m.•31 views

py39-sqlalchemy12 -- multiple SQL Injection vulnerabilities

21k reports: SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the orderby parameter. nosecurity reports: SQLAlchemy 1.2.17 has SQL Injection when the groupby parameter can be controlled...

9.4AI score
Exploits0References4
FreeBSD
FreeBSD
•added 2019/01/21 12:0 a.m.•31 views

phpMyAdmin -- File disclosure and SQL injection

The phpMyAdmin development team reports: Summary Arbitrary file read vulnerability Description When AllowArbitraryServer configuration set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access. phpMyadmin attempts to block...

2.5AI score
Exploits0References2
FreeBSD
FreeBSD
•added 2019/01/03 12:0 a.m.•31 views

Django -- Content spoofing possibility in the default 404 page

Django security releases issued reports: An attacker could craft a malicious URL that could make spoofed content appear on the default page generated by the django.views.defaults.pagenotfound view...

6.5CVSS2.1AI score0.03685EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2018/12/25 12:0 a.m.•31 views

wget -- security flaw in caching credentials passed as a part of the URL

Gynvael Coldwind reports: setfilemetadata in xattr.c in GNU Wget before 1.20.1 stores a file's origin URL in the user.xdg.origin.url metadata attribute of the extended attributes of the downloaded file, which allows local users to obtain sensitive information e.g., credentials contained in the UR...

7.8CVSS3.1AI score0.00659EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2018/12/06 12:0 a.m.•31 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: Directory Traversal in Templates API...

7.5CVSS3.1AI score0.02273EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2018/05/16 12:0 a.m.•31 views

strongswan -- Fix Denial-of-Service Vulnerability strongSwan (CVE-2018-10811, CVE-2018-5388)

strongSwan security team reports: A denial-of-service vulnerability in the IKEv2 key derivation was fixed if the openssl plugin is used in FIPS mode and HMAC-MD5 is negotiated as PRF which is not FIPS-compliant. So this should only affect very specific setups, but in such configurations all...

7.5CVSS4.4AI score0.07124EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2018/03/16 12:0 a.m.•31 views

mozilla -- multiple vulnerabilities

The Mozilla Foundation reports: CVE-2018-5146: Out of bounds memory write in libvorbis An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. CVE-2018-5147: Out of bounds memory write in libtremor The libtremor library has the same flaw as...

9.8CVSS8.6AI score0.12054EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2018/01/16 12:0 a.m.•31 views

libraw -- multiple DoS vulnerabilities

Secunia Research reports: CVE-2018-5800: An off-by-one error within the "LibRaw::kodakycbcrloadraw" function internal/dcrawcommon.cpp can be exploited to cause a heap-based buffer overflow and subsequently cause a crash. CVE-2017-5801: An error within the "LibRaw::unpack" function src/librawcxx.c...

10CVSS7.8AI score0.06514EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/12/12 12:0 a.m.•31 views

asterisk -- Crash in PJSIP resource when missing a contact header

The Asterisk project reports: A select set of SIP messages create a dialog in Asterisk. Those SIP messages must contain a contact header. For those messages, if the header was not present and using the PJSIP channel driver, it would cause Asterisk to crash. The severity of this vulnerability is...

7.5CVSS7.6AI score0.75351EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/11/29 12:0 a.m.•31 views

mozilla -- multiple vulnerabilities

Mozilla Foundation reports: CVE-2017-7843: Web worker in Private Browsing mode can write IndexedDB data CVE-2017-7844: Visited history information leak through SVG image...

7.5CVSS2.2AI score0.02989EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2017/10/16 12:0 a.m.•31 views

Flash Player -- Remote code execution

Adobe reports: This update resolves a type confusion vulnerability that could lead to remote code execution CVE-2017-11292...

8.8CVSS8.6AI score0.12104EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/09/21 12:0 a.m.•31 views

sam2p -- multiple issues

sam2p developers report: In sam2p 0.49.3, a heap-based buffer overflow exists in the pcxLoadImage24 function of the file inpcx.cpp. In sam2p 0.49.3, the inxpmreader function in inxpm.cpp has an integer signedness error, leading to a crash when writing to an out-of-bounds array element. In sam2p...

9.8CVSS9.1AI score0.01694EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2017/08/30 12:0 a.m.•31 views

gdk-pixbuf -- multiple vulnerabilities

TALOS reports: An exploitable integer overflow vulnerability exists in the tiffimageparse functionality. An exploitable heap-overflow vulnerability exists in the gdkpixbufjpegimageloadincrement functionality...

8.8CVSS8AI score0.04599EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2017/08/16 12:0 a.m.•31 views

drupal -- Drupal Core - Multiple Vulnerabilities

Drupal Security Team: CVE-2017-6923: Views - Access Bypass - Moderately Critical CVE-2017-6924: REST API can bypass comment approval - Access Bypass - Moderately Critica CVE-2017-6925: Entity access bypass for entities that do not have UUIDs or have protected revisions - Access Bypass - Critical...

9.8CVSS3AI score0.03017EPSS
Exploits0
FreeBSD
FreeBSD
•added 2017/08/10 12:0 a.m.•31 views

subversion -- Arbitrary code execution vulnerability

subversion team reports: A Subversion client sometimes connects to URLs provided by the repository. This happens in two primary cases: during 'checkout', 'export', 'update', and 'switch', when the tree being downloaded contains svn:externals properties; and when using 'svnsync sync' with one URL...

9.8CVSS0.9AI score0.18892EPSS
Exploits3References1
FreeBSD
FreeBSD
•added 2017/07/25 12:0 a.m.•31 views

chromium -- multiple vulnerabilities

Google Chrome releases reports: 40 security fixes in this release Please reference CVE/URL list for details...

8.8CVSS7.3AI score0.15513EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/07/12 12:0 a.m.•31 views

FreeBSD -- heimdal KDC-REP service name validation vulnerability

Problem Description: There is a programming error in the Heimdal implementation that used an unauthenticated, plain-text version of the KDC-REP service name found in a ticket. Impact: An attacker who has control of the network between a client and the service it talks to will be able to impersona...

6.5CVSS6.7AI score0.00992EPSS
Exploits0
FreeBSD
FreeBSD
•added 2017/07/05 12:0 a.m.•31 views

irssi -- multiple vulnerabilities

irssi reports: When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. While updating the internal nick list, Irssi may incorrectly use the GHashTable interface and free the nick while updating it. This will then result in use-after-free conditions on each...

9.8CVSS9.1AI score0.03443EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/06/19 12:0 a.m.•31 views

exim -- Privilege escalation via multiple memory leaks

Qualsys reports: Exim supports the use of multiple "-p" command line arguments which are malloc'ed and never free'ed, used in conjunction with other issues allows attackers to cause arbitrary code execution. This affects exim version 4.89 and earlier. Please note that at this time upstream has...

4CVSS5.9AI score0.0053EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/06/03 12:0 a.m.•31 views

python -- possible integer overflow vulnerability

Python issue: There is a possible integer overflow in PyStringDecodeEscape function of the file stringobject.c, which can be abused to gain a heap overflow, possibly leading to arbitrary code execution...

9.8CVSS9.7AI score0.07944EPSS
Exploits0References3
FreeBSD
FreeBSD
•added 2017/05/30 12:0 a.m.•31 views

strongswan -- multiple vulnerabilities

strongSwan security team reports: RSA public keys passed to the gmp plugin aren't validated sufficiently before attempting signature verification, so that invalid input might lead to a floating point exception. CVE-2017-9022 ASN.1 CHOICE types are not correctly handled by the ASN.1 parser when...

7.5CVSS0.5AI score0.02222EPSS
Exploits0References2
FreeBSD
FreeBSD
•added 2017/04/12 12:0 a.m.•31 views

BIND -- multiple vulnerabilities

ISC reports: A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. An attacker could deliberately construct a query, enabling denial-of-service against a server if it was configured to use the DNS64 feature and other...

7AI score
Exploits0References3
FreeBSD
FreeBSD
•added 2017/02/21 12:0 a.m.•31 views

xen-tools -- cirrus_bitblt_cputovideo does not check if memory region is safe

The Xen Project reports: In CIRRUSBLTMODEMEMSYSSRC mode the bitblit copy routine cirrusbitbltcputovideo fails to check whether the specified memory region is safe. A malicious guest administrator can cause an out of bounds memory write, very likely exploitable as a privilege escalation...

9.9CVSS9.4AI score0.03559EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2017/01/31 12:0 a.m.•31 views

libevent -- multiple vulnerabilities

Debian Security reports: CVE-2016-10195: The nameparse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the labellen variable, which triggers an out-of-bounds stack read. CVE-2016-10196: Stack-based buffer overflow in the...

9.8CVSS8.9AI score0.06681EPSS
Exploits3References5
FreeBSD
FreeBSD
•added 2017/01/29 12:0 a.m.•31 views

PuTTY -- integer overflow permits memory overwrite by forwarded ssh-agent connections

Simon G. Tatham reports: Many versions of PuTTY prior to 0.68 have a heap-corrupting integer overflow bug in the sshagentchanneldata function which processes messages sent by remote SSH clients to a forwarded agent connection. ... This bug is only exploitable at all if you have enabled SSH agent...

9.8CVSS9.1AI score0.21816EPSS
Exploits4References1
FreeBSD
FreeBSD
•added 2016/12/06 12:0 a.m.•31 views

FreeBSD -- link_ntoa(3) buffer overflow

Problem Description: A specially crafted argument can trigger a static buffer overflow in the library, with possibility to rewrite following static buffers that belong to other library functions. Impact: Due to very limited use of the function in the existing applications, and limited length of t...

9.8CVSS1.7AI score0.03699EPSS
Exploits1
FreeBSD
FreeBSD
•added 2016/11/24 12:0 a.m.•31 views

wget -- Access List Bypass / Race Condition

Dawid Golunski reports: GNU wget in version 1.17 and earlier, when used in mirroring/recursive mode, is affected by a Race Condition vulnerability that might allow remote attackers to bypass intended wget access list restrictions specified with -A parameter...

8.1CVSS5.8AI score0.07499EPSS
Exploits5References1
FreeBSD
FreeBSD
•added 2016/11/16 12:0 a.m.•31 views

wireshark -- multiple vulnerabilities

Wireshark project reports: Wireshark project is releasing Wireshark 2.2.2, which addresses: wnpa-sec-2016-58: Profinet I/O long loop - CVE-2016-9372 wnpa-sec-2016-59: AllJoyn crash - CVE-2016-9374 wnpa-sec-2016-60: OpenFlow crash - CVE-2016-9376 wnpa-sec-2016-61: DCERPC crash - CVE-2016-9373...

5.9CVSS6.4AI score0.0209EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/11/05 12:0 a.m.•31 views

py-cryptography -- vulnerable HKDF key generation

Alex Gaynor reports: Fixed a bug where HKDF would return an empty byte-string if used with a length less than algorithm.digestsize...

7.5CVSS1.4AI score0.03399EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/10/18 12:0 a.m.•31 views

node.js -- ares_create_query single byte out of buffer write

Node.js has released new versions containing the following security fix: The following releases all contain fixes for CVE-2016-5180 "arescreatequery single byte out of buffer write": Node.js v0.10.48 Maintenance, Node.js v0.12.17 Maintenance, Node.js v4.6.1 LTS "Argon" While this is not a critica...

9.8CVSS3.5AI score0.08583EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/09/08 12:0 a.m.•31 views

xen-kernel -- x86 HVM: Overflow of sh_ctxt->seg_reg[]

The Xen Project reports: x86 HVM guests running with shadow paging use a subset of the x86 emulator to handle the guest writing to its own pagetables. There are situations a guest can provoke which result in exceeding the space allocated for internal state. A malicious HVM guest administrator can...

4.1CVSS6.8AI score0.00392EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/08/03 12:0 a.m.•31 views

chromium -- multiple vulnerabilities

Google Chrome Releases reports: 10 security fixes in this release, including: 629542 High CVE-2016-5141 Address bar spoofing. Credit to anonymous 626948 High CVE-2016-5142 Use-after-free in Blink. Credit to anonymous 625541 High CVE-2016-5139 Heap overflow in pdfium. Credit to GiWan Go of Stealie...

9.8CVSS1.4AI score0.01849EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/07/17 12:0 a.m.•31 views

Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations)

The Apache OpenOffice Project reports: An OpenDocument Presentation .ODP or Presentation Template .OTP file can contain invalid presentation elements that lead to memory corruption when the document is loaded in Apache OpenOffice Impress. The defect may cause the document to appear as corrupted a...

7.8CVSS7.7AI score0.13826EPSS
Exploits1References1
FreeBSD
FreeBSD
•added 2016/06/07 12:0 a.m.•31 views

NSS -- multiple vulnerabilities

Mozilla Foundation reports: Mozilla has updated the version of Network Security Services NSS library used in Firefox to NSS 3.23. This addresses four moderate rated networking security issues reported by Mozilla engineers Tyson Smith and Jed Davis...

9.3CVSS2.8AI score0.0338EPSS
Exploits0References5
FreeBSD
FreeBSD
•added 2016/05/04 12:0 a.m.•31 views

ikiwiki -- XSS vulnerability

Mitre reports: Cross-site scripting XSS vulnerability in the cgierror function in CGI.pm in ikiwiki before 3.20160506 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors involving an error message...

6.1CVSS3.9AI score0.01465EPSS
Exploits0
FreeBSD
FreeBSD
•added 2016/03/03 12:0 a.m.•31 views

Bugzilla security issues

Bugzilla Security Advisory A specially crafted bug summary could trigger XSS in dependency graphs. Due to an incorrect parsing of the image map generated by the dot script, a specially crafted bug summary could trigger XSS in dependency graphs...

6.1CVSS2.2AI score0.01483EPSS
Exploits0References1
FreeBSD
FreeBSD
•added 2016/02/09 12:0 a.m.•31 views

flash -- multiple vulnerabilities

Adobe reports: These updates resolve a type confusion vulnerability that could lead to code execution CVE-2016-0985. These updates resolve use-after-free vulnerabilities that could lead to code execution CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0982, CVE-2016-0983, CVE-2016-0984. The...

9.3CVSS9.7AI score0.55375EPSS
Exploits14References1
Total number of security vulnerabilities5000