Lucene search
K
FreebsdMost viewed

6585 matches found

FreeBSD
FreeBSD
added 2003/01/01 12:0 a.m.30 views

multiple buffer overflows in xboing

Steve Kemp reports in a Debian bug submission: Due to improper bounds checking it is possible for a malicious user to gain a shell with membership group 'games'. The binary is installed setgid games. Environmental variables are used without being bounds-checked in any way, from the source code:...

4.6CVSS6.8AI score0.00508EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2026/01/29 12:0 a.m.29 views

qt6-webengine -- multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 262 security bugs in Chromium: CVE-2025-13223: Type Confusion in V8 CVE-2025-13224: Type Confusion in V8 CVE-2025-13630: Type Confusion in V8 CVE-2025-13632: Inappropriate implementation in DevTools CVE-2025-13634: Inappropriate implementation i...

9.8CVSS7.3AI score0.2202EPSS
Exploits17References1
FreeBSD
FreeBSD
added 2025/04/23 12:0 a.m.29 views

Gitlab -- Vulnerabilities

Gitlab reports: Cross Site Scripting XSS in Maven Dependency Proxy through CSP directives Cross Site Scripting XSS in Maven dependency proxy through cache headers Network Error Logging NEL Header Injection in Maven Dependency Proxy Allows Browser Activity Monitoring Denial of service DOS via issu...

8.7CVSS5.7AI score0.0054EPSS
Exploits3References1
FreeBSD
FreeBSD
added 2025/03/12 12:0 a.m.29 views

Gitlab -- Vulnerabilities

Gitlab reports: CVE-2025-25291 and CVE-2025-25292 third party gem ruby-saml CVE-2025-27407 third party gem graphql Denial of Service Due to Inefficient Processing of Untrusted Input Credentials disclosed when repository mirroring fails Denial of Service Vulnerability in GitLab Approval Rules due ...

9.8CVSS5.3AI score0.63792EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2024/12/11 12:0 a.m.29 views

Gitlab -- Vulnerabilities

Gitlab reports: Injection of Network Error Logging NEL headers in kubernetes proxy response could lead to ATO abusing OAuth flows Denial of Service by repeatedly sending unauthenticated requests for diff-files CIJOBTOKEN could be used to obtain GitLab session Open redirect in releases API...

8.7CVSS6.4AI score0.00765EPSS
Exploits8References1
FreeBSD
FreeBSD
added 2024/10/09 12:0 a.m.29 views

firefox -- use-after-free code execution

[email protected] reports: An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild...

9.8CVSS7.3AI score0.32568EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2024/09/26 12:0 a.m.29 views

cups-filters -- remote code execution

OpenPrinting reports: Due to the service binding to :631 INADDRANY , multiple bugs in cups-browsed can be exploited in sequence to introduce a malicious printer to the system. This chain of exploits ultimately enables an attacker to execute arbitrary commands remotely on the target machine withou...

8.6CVSS7.8AI score0.76959EPSS
Exploits5References1
FreeBSD
FreeBSD
added 2024/09/08 12:0 a.m.29 views

netatalk3 -- multiple WolfSSL vulnerabilities

Netatalk release reports: WolfSSL 5.7.0 included in netatalk includes multiple security vulnerabilities...

10CVSS7AI score0.0056EPSS
Exploits0
FreeBSD
FreeBSD
added 2024/08/01 12:0 a.m.29 views

Django -- multiple vulnerabilities

Django reports: CVE-2024-41989: Memory exhaustion in django.utils.numberformat.floatformat. CVE-2024-41990: Potential denial-of-service in django.utils.html.urlize. CVE-2024-41991: Potential denial-of-service vulnerability in django.utils.html.urlize and AdminURLFieldWidget. CVE-2024-42005:...

9.8CVSS8.4AI score0.01258EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2024/05/22 12:0 a.m.29 views

electron28 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-4948. Security: backported fix for CVE-2024-3914. Security: backported fix for CVE-2024-4060. Security: backported fix for CVE-2024-4058. Security: backported fix for CVE-2024-4558...

9.6CVSS7AI score0.08875EPSS
Exploits4References5
FreeBSD
FreeBSD
added 2024/05/14 12:0 a.m.29 views

Intel CPUs -- multiple vulnerabilities

Intel reports: Potential security vulnerabilities in some Intel Trust Domain Extensions TDX module software may allow escalation of privilege. Improper input validation in some Intel TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of...

8.2CVSS7.3AI score0.00379EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2024/05/03 12:0 a.m.29 views

electron29 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-4060. Security: backported fix for CVE-2024-4058...

9CVSS7.4AI score0.08875EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2024/04/16 12:0 a.m.29 views

qt5-webengine -- Multiple vulnerabilities

Backports for 2 security bugs in Chromium: CVE-2024-3157: Out of bounds write in Compositing CVE-2024-3516: Heap buffer overflow in ANGLE...

9.6CVSS7.7AI score0.01EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2024/04/10 12:0 a.m.29 views

Gitlab -- Patch Release: 16.10.2, 16.9.4, 16.8.6

Gitlab reports: Stored XSS injected in diff viewer Stored XSS via autocomplete results Redos on Integrations Chat Messages Redos During Parse Junit Test Report...

8.7CVSS6AI score0.00601EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2024/02/25 12:0 a.m.29 views

Django -- multiple vulnerabilities

Django reports: CVE-2024-27351: Potential regular expression denial-of-service in django.utils.text.Truncator.words...

5.3CVSS7.1AI score0.01854EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2024/02/12 12:0 a.m.29 views

Grafana -- Data source permission escalation

Grafana Labs reports: The vulnerability impacts Grafana Cloud and Grafana Enterprise instances, and it is exploitable if a user who should not be able to access all data sources is granted permissions to create a data source. By default, only organization Administrators are allowed to create a da...

8.8CVSS6.7AI score0.00802EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2024/01/30 12:0 a.m.29 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 4 security fixes: 1511567 High CVE-2024-1060: Use after free in Canvas. Reported by Anonymous on 2023-12-14 1514777 High CVE-2024-1059: Use after free in WebRTC. Reported by Cassidy Kim@cassidy6564 on 2023-12-29 1511085 High CVE-2024-1077: Use after...

8.8CVSS7.9AI score0.00936EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2023/11/30 12:0 a.m.29 views

Gitlab -- Vulnerabilities

Gitlab reports: XSS and ReDoS in Markdown via Banzai pipeline of Jira Members with admingroupmember custom permission can add members with higher role Release Description visible in public projects despite release set as project members only through atom response Manipulate the repository content...

8.7CVSS6.6AI score0.00579EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2023/10/03 12:0 a.m.29 views

chromium -- type confusion in v8

Chrome Releases reports: This update includes 1 security fix: 1485829 High CVE-2023-5346: Type Confusion in V8. Reported by Amit Kumar on 2023-09-22...

8.8CVSS7AI score0.01738EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2023/09/22 12:0 a.m.29 views

11/libX11 multiple vulnerabilities

The X.Org project reports: CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms When libX11 is processing the reply from the X server to the XkbGetMap request, if it detected the number of symbols in the new map was less than the size of the buffer it had allocated, it always added room...

7.8CVSS7.4AI score0.00633EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2023/08/30 12:0 a.m.29 views

electron22 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-4427. Security: backported fix for CVE-2023-4428...

8.1CVSS8.7AI score0.3398EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2023/07/25 12:0 a.m.29 views

typo3 -- multiple vulnerabilities

TYPO3 reports: TYPO3-CORE-SA-2023-002: By-passing Cross-Site Scripting Protection in HTML Sanitizer TYPO3-CORE-SA-2023-003: Information Disclosure due to Out-of-scope Site Resolution TYPO3-CORE-SA-2023-004: Cross-Site Scripting in CKEditor4 WordCount Plugin...

6.1CVSS6.2AI score0.0088EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2023/07/05 12:0 a.m.29 views

electron{23,24} -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2023-3422. Security: backported fix for CVE-2023-3421. Security: backported fix for CVE-2023-3420...

8.8CVSS7AI score0.56192EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2023/05/26 12:0 a.m.29 views

Openfire administration console authentication bypass

[email protected] reports: Openfire's administrative console, a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup Environment in an already configure...

8.6CVSS7.3AI score0.99999EPSS
Exploits15References1
FreeBSD
FreeBSD
added 2023/03/26 12:0 a.m.29 views

py39-redis -- can send response data to the client of an unrelated request

drago-balto reports: redis-py before 4.5.3, as used in ChatGPT and other products, leaves a connection open after canceling an async Redis command at an inopportune time in the case of a pipeline operation, and can send response data to the client of an unrelated request in an off-by-one manner...

6.5CVSS6.2AI score0.01034EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2023/03/21 12:0 a.m.29 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 8 security fixes: 1421773 High CVE-2023-1528: Use after free in Passwords. Reported by Wan Choi of Seoul National University on 2023-03-07 1419718 High CVE-2023-1529: Out of bounds memory access in WebHID. Reported by anonymous on 2023-02-27 1419831...

9.8CVSS9AI score0.02925EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/11/22 12:0 a.m.29 views

rubygem-cgi -- HTTP response splitting vulnerability

Hiroshi Tokumaru reports: If an application that generates HTTP responses using the cgi gem with untrusted user input, an attacker can exploit it to inject a malicious HTTP response header and/or body. Also, the contents for a CGI::Cookie object were not checked properly. If an application create...

8.8CVSS0.6AI score0.02287EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2022/10/13 12:0 a.m.29 views

freerdp -- clients using the `/video` command line switch might read uninitialized data

MITRE reports: All FreeRDP based clients when using the /video command line switch might read uninitialized data, decode it as audio/video and display the result. FreeRDP based server implementations are not affected...

7.5CVSS7.8AI score0.00985EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/08/03 12:0 a.m.29 views

puppetdb -- Potential SQL injection

Puppet reports: The org.postgresql/postgresql driver has been updated to version 42.4.1 to address CVE-2022-31197, which is an SQL injection risk that according to the CVE report, can only be exploited if an attacker controls the database to the extent that they can adjust relevant tables to have...

8CVSS4.5AI score0.0167EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2022/08/01 12:0 a.m.29 views

Django -- multiple vulnerabilities

Django reports: CVE-2022-36359: Potential reflected file download vulnerability in FileResponse...

8.8CVSS2.9AI score0.00657EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/06/11 12:0 a.m.29 views

XFCE -- Allows executing malicious .desktop files pointing to remote code

XFCE Project reports: Prevent executing possibly malicious .desktop files from online sources ftp://, http:// etc...

8.8CVSS1.5AI score0.0151EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/06/06 12:0 a.m.29 views

libspf2 -- Integer Underflow Remote Code Execution

Trendmicro ZDI reports: Integer Underflow Remote Code Execution Vulnerability The specific flaw exists within the parsing of SPF macros. When parsing SPF macros, the process does not properly validate user-supplied data, which can result in an integer underflow before writing to memory. An attack...

8.8CVSS7.8AI score0.51474EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/04/12 12:0 a.m.29 views

gogs -- XSS in issue attachments

The gogs project reports: Repository issues page allows HTML attachments with arbitrary JS code...

7.3CVSS1.9AI score0.00687EPSS
Exploits1References2
FreeBSD
FreeBSD
added 2022/03/25 12:0 a.m.30 views

powerdns-recursor -- denial of service

PowerDNS Team reports: PowerDNS Security Advisory 2022-01: incomplete validation of incoming IXFR transfer in Authoritative Server and Recursor...

7.5CVSS4.4AI score0.04908EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2022/02/09 12:0 a.m.29 views

go -- multiple vulnerabilities

The Go project reports: regexp: stack exhaustion compiling deeply nested expressions On 64-bit platforms, an extremely deeply nested expression can cause regexp.Compile to cause goroutine stack exhaustion, forcing the program to exit. Note this applies to very large expressions, on the order of 2...

7.5CVSS1.8AI score0.03255EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/11/15 12:0 a.m.29 views

rubygem-date -- Regular Expression Denial of Service Vunlerability of Date Parsing Methods

Stanislav Valkanov reports: Date's parsing methods including Date.parse are using Regexps internally, some of which are vulnerable against regular expression denial of service. Applications and libraries that apply such methods to untrusted input may be affected...

7.5CVSS7.7AI score0.03222EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2021/09/20 12:0 a.m.29 views

webkit2-gtk3 -- multiple vulnerabilities

The WebKitGTK project reports vulnerabilities: CVE-2021-30858: Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS3.1AI score0.13486EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/08/10 12:0 a.m.29 views

fetchmail -- STARTTLS bypass vulnerabilities

Problem: In certain circumstances, fetchmail 6.4.21 and older would not encrypt the session using STARTTLS/STLS, and might not have cleared session state across the TLS negotiation...

5.9CVSS2.3AI score0.00925EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/07/22 12:0 a.m.29 views

Prosody -- Remote Information Disclosure

A Prosody XMPP server advisory reports: It was discovered that Prosody allows any entity to access the list of admins, members, owners and banned entities of any federated XMPP group chat of which they know the address...

7.5CVSS3.2AI score0.02329EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2021/03/04 12:0 a.m.29 views

Gitlab -- Multiple vulnerabilities

Gitlab reports: JWT token leak via Workhorse Stored XSS in wiki pages Group Maintainers are able to use the Group CI/CD Variables API Insecure storage of GitLab session keys...

5.4CVSS3AI score0.00861EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/02/24 12:0 a.m.29 views

FreeBSD -- jail_attach(2) relies on the caller to change the cwd

Problem Description: When a process, such as jexec8 or killall1, calls jailattach2 to enter a jail, the jailed root can attach to it using ptrace2 before the current working directory is changed. Impact: A process with superuser privileges running inside a jail could change the root directory...

8.7CVSS2AI score0.00694EPSS
Exploits0
FreeBSD
FreeBSD
added 2021/02/08 12:0 a.m.29 views

asterisk -- Remote Crash Vulnerability in PJSIP channel driver

The Asterisk project reports: Given a scenario where an outgoing call is placed from Asterisk to a remote SIP server it is possible for a crash to occur...

5.9CVSS1.5AI score0.02547EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/01/20 12:0 a.m.29 views

pysaml2 -- multiple vulnerabilities

pysaml2 Releases: Fix processing of invalid SAML XML documents - CVE-2021-21238 Fix unspecified xmlsec1 key-type preference - CVE-2021-21239...

6.5CVSS2.1AI score0.0118EPSS
Exploits3References3
FreeBSD
FreeBSD
added 2020/12/01 12:0 a.m.29 views

FreeBSD -- Multiple vulnerabilities in rtsold

Problem Description: Two bugs exist in rtsold8's RDNSS and DNSSL option handling. First, rtsold8 failed to perform sufficient bounds checking on the extent of the option. In particular, it does not verify that the option does not extend past the end of the received packet before processing its...

10CVSS1.3AI score0.01496EPSS
Exploits0
FreeBSD
FreeBSD
added 2020/09/29 12:0 a.m.29 views

zeek -- Vulnerability due to memory leak

Jon Siwek of Corelight reports: This release fixes the following security issue: A memory leak in multipart MIME code has potential for remote exploitation and cause for Denial of Service via resource exhaustion...

2.8AI score
Exploits0References1
FreeBSD
FreeBSD
added 2020/09/15 12:0 a.m.29 views

FreeBSD -- ure device driver susceptible to packet-in-packet attack

Problem Description: A programming error in the ure4 device driver caused some Realtek USB Ethernet interfaces to incorrectly report packets with more than 2048 bytes in a single USB transfer as having a length of only 2048 bytes. An adversary can exploit this to cause the driver to misinterpret...

5.3CVSS0.5AI score0.00737EPSS
Exploits0
FreeBSD
FreeBSD
added 2020/09/04 12:0 a.m.29 views

GnuTLS -- null pointer dereference

The GnuTLS project reports: It was found by oss-fuzz that the server sending a "norenegotiation" alert in an unexpected timing, followed by an invalid second handshake can cause a TLS 1.3 client to crash via a null-pointer dereference. The crash happens in the application's error handling path,...

7.5CVSS0.9AI score0.0373EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2020/09/03 12:0 a.m.29 views

gnupg -- AEAD key import overflow

Importing an OpenPGP key having a preference list for AEAD algorithms will lead to an array overflow and thus often to a crash or other undefined behaviour. Importing an arbitrary key can often easily be triggered by an attacker and thus triggering this bug. Exploiting the bug aside from crashes ...

7.8CVSS2.1AI score0.01283EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2020/08/20 12:0 a.m.29 views

go -- net/http/cgi, net/http/fcgi: Cross-Site Scripting (XSS) when Content-Type is not specified

The Go project reports: When a Handler does not explicitly set the Content-Type header, both CGI implementations default to “text/html”. If an attacker can make a server generate content under their control e.g. a JSON containing user data or an uploaded image file this might be mistakenly return...

6.1CVSS1AI score0.03646EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2020/06/23 12:0 a.m.29 views

nexus2-oss -- NXRM2 Directory Traversal vulnerability

Sonatype reports: CVE-2020-15012: NXRM2 Directory Traversal vulnerability...

8.6CVSS3.3AI score0.02591EPSS
Exploits0References1
Total number of security vulnerabilities5000