Lucene search
K
FreebsdRecent

6578 matches found

FreeBSD
FreeBSD
added 2025/04/01 12:0 a.m.10 views

MongoDB -- Malformed wire protocol messages may cause mongos to crash

[email protected] reports: Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31, MongoDB v6.0 versions prior to6.0.20 and MongoDB v7...

7.5CVSS7.2AI score0.00414EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/27 12:0 a.m.20 views

electron{33,34} -- Incorrect handle provided in unspecified circumstances in Mojo

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2025-2783...

8.3CVSS7.4AI score0.08404EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2025/03/26 12:0 a.m.27 views

Gitlab -- Vulnerabilities

Gitlab reports: Cross-site Scripting XSS through merge-request error messages Cross-site Scripting XSS through improper rendering of certain file types Admin Privileges Persists After Role is Revoked External user can access internal projects Prompt injection in Amazon Q integration may allow...

8.8CVSS6.6AI score0.00352EPSS
Exploits4References1
FreeBSD
FreeBSD
added 2025/03/26 12:0 a.m.7 views

py-matrix-synapse -- federation denial of service via malformed events

element-hq/synapse developers report: A malicious server can craft events which, when received, prevent Synapse version up to 1.127.0 from federating with other servers. The vulnerability has been exploited in the wild...

7.5CVSS6.8AI score0.01157EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/26 12:0 a.m.9 views

openvpn -- server-side denial-of-service vulnerability with tls-crypt-v2

Gert Doering reports: OpenVPN servers between 2.6.1 and 2.6.13 using --tls-crypt-v2 can be made to abort with an ASSERT message by sending a particular combination of authenticated and malformed packets. To trigger the bug, a valid tls-crypt-v2 client key is needed, or network observation of a...

7.5CVSS7.6AI score0.00815EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/25 12:0 a.m.15 views

Grafana -- Authorization bypass in data source proxy API

Grafana Labs reports: This vulnerability, which was discovered while reviewing a pull request from an external contributor, effects Grafana’s data source proxy API and allows authorization checks to be bypassed by adding an extra slash character / in the URL path. Among Grafana-maintained data...

8.3CVSS6.5AI score0.12241EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/20 12:0 a.m.13 views

electron{33,34} -- Type Confusion in V8

Electron developers report: This update fixes the following vulnerability: Security: backported fix for CVE-2025-1920...

8.8CVSS7.4AI score0.00322EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/19 12:0 a.m.12 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 2 security fixes: 401029609 Critical CVE-2025-2476: Use after free in Lens. Reported by SungKwon Lee of Enki Whitehat on 2025-03-05...

8.8CVSS7.6AI score0.00791EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/14 12:0 a.m.16 views

Grafana -- DOM XSS vulnerability

Grafana Labs reports: An external security researcher responsibly reported a security vulnerability in Grafana’s built-in XY chart plugin that is vulnerable to a DOM XSS vulnerability. The CVSS score for this vulnerability is 6.8 MEDIUM...

8.3CVSS6.4AI score0.12241EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/14 12:0 a.m.8 views

expat: improper restriction of xml entity expansion depth

[email protected] reports: A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive entity expansion in XML documents. When parsing an XML document with deeply nested entity references, libexpat can be forced to recurse indefinitely, exhausting the stack...

7.5CVSS7.1AI score0.01569EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/13 12:0 a.m.48 views

php -- Multiple vulnerabilities

php.net reports: CVE-2024-11235: Core: Fixed GHSA-rwp7-7vc6-8477 Reference counting in phprequestshutdown causes Use-After-Free. CVE-2025-1219: LibXML: Fixed GHSA-p3x9-6h7p-cgfc libxml streams use wrong content-type header when requesting a redirected resource. CVE-2025-1736: Streams: Fixed...

9.8CVSS7.2AI score0.01357EPSS
Exploits3References1
FreeBSD
FreeBSD
added 2025/03/13 12:0 a.m.53 views

shibboleth-sp -- Parameter manipulation allows the forging of signed SAML messages

The Shibboleth Project reports: An updated version of the OpenSAML C++ library is available which corrects a parameter manipulation vulnerability when using SAML bindings that rely on non-XML signatures. The Shibboleth Service Provider is impacted by this issue, and it manifests as a critical...

6AI score
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/13 12:0 a.m.18 views

libxslt -- multiple vulnerabilities

CVE-2024-55549 Fix UAF related to excluded namespaces xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes. CVE-2025-24855 Fix use-after-free of XPath context node numbers.c in libxslt before 1.1.43 has a use-after-free because , in...

7.8CVSS7.3AI score0.00324EPSS
Exploits4References2
FreeBSD
FreeBSD
added 2025/03/12 12:0 a.m.17 views

gitea -- Multiple vulnerabilities

[email protected] reports: Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NOPROXY environment variable is set to ".example.com", a request to "::1%25.example.com:80 will incorrectly match and not be proxied. go-redis ...

7.1AI score
Exploits0References3
FreeBSD
FreeBSD
added 2025/03/12 12:0 a.m.6 views

vim -- potential data loss with zip.vim and specially crafted zip files

Vim reports: See https://github.com/vim/vim/security/advisories/GHSA-693p-m996-3rmf...

4.4CVSS7AI score0.00342EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/12 12:0 a.m.14 views

suricata -- Multiple vulnerabilities

Suricate team reports: Multiple vulnerabilities CVE-2025-29915: Severity HIGH. The AFPACKET defrag option is enabled by default and allows AFPACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is based on the network interface MTU which...

7.5CVSS6.5AI score0.00241EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2025/03/12 12:0 a.m.28 views

Gitlab -- Vulnerabilities

Gitlab reports: CVE-2025-25291 and CVE-2025-25292 third party gem ruby-saml CVE-2025-27407 third party gem graphql Denial of Service Due to Inefficient Processing of Untrusted Input Credentials disclosed when repository mirroring fails Denial of Service Vulnerability in GitLab Approval Rules due ...

9.8CVSS5.3AI score0.63792EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2025/03/10 12:0 a.m.23 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 5 security fixes: 398065918 High CVE-2025-1920: Type Confusion in V8. Reported by Excello s.r.o. on 2025-02-21 400052777 High CVE-2025-2135: Type Confusion in V8. Reported by Zhenghang Xiao @Kipreyyy on 2025-03-02 401059730 High CVE-TBD: Out of bounds...

8.8CVSS7.7AI score0.06387EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/03/06 12:0 a.m.16 views

electron33 -- multiple vulnerabilities

Electron develpers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2025-0445. Security: backported fix for CVE-2025-0995. Security: backported fix for CVE-2025-0998...

8.8CVSS7.4AI score0.0046EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2025/03/05 12:0 a.m.20 views

Jinja2 -- Sandbox breakout through attr filter selecting format method

[email protected] reports: Jinja is an extensible templating engine. Prior to 3.1.6, an oversight in how the Jinja sandboxed environment interacts with the |attr filter allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the...

8.8CVSS8AI score0.00465EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/05 12:0 a.m.22 views

jenkins -- multiple vulnerabilities

Jenkins Security Advisory: Description Medium SECURITY-3495 / CVE-2025-27622 Encrypted values of secrets stored in agent configuration revealed to users with Agent/Extended Read permission Description Medium SECURITY-3496 / CVE-2025-27623 Encrypted values of secrets stored in view configuration...

5.4CVSS6.9AI score0.00684EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.12 views

mozilla -- memory corruption

[email protected] reports: Memory safety bugs present in Firefox 135 and Thunderbird 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code...

8.2CVSS8AI score0.00401EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.5 views

mozilla -- Memory safety bugs

[email protected] reports: Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 115.20, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run...

7.5CVSS8.1AI score0.00519EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.11 views

libreoffice -- Macro URL arbitrary script execution

[email protected] reports: LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice a link in a browser...

7.8CVSS7.3AI score0.00291EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.16 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 14 security fixes: 397731718 High CVE-2025-1914: Out of bounds read in V8. Reported by Zhenghang Xiao @Kipreyyy and Nan Wang @eternalsakura13 on 2025-02-20 391114799 Medium CVE-2025-1915: Improper Limitation of a Pathname to a Restricted Directory in...

8.8CVSS7.9AI score0.00415EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.13 views

mozilla -- 64 bit JIT WASM read on left over memory

[email protected] reports: On 64-bit CPUs, when the JIT compiles WASM i32 return values they can pick up bits from left over memory. This can potentially cause them to be treated as a different type...

7.6CVSS8.3AI score0.00294EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.11 views

mozilla -- memory corruption

[email protected] reports: CVE-2025-1938: Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrar...

6.5CVSS8AI score0.00433EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.18 views

mozilla -- multiple vulnerabilities

[email protected] reports: An inconsistent comparator in xslt/txNodeSorter could have resulted in potentially exploitable out-of-bounds access. Only affected version 122 and later. This vulnerability affects Firefox 136, Firefox ESR 128.8, Thunderbird 136, and Thunderbird 128.8. Under certain...

6.8AI score
Exploits0References4
FreeBSD
FreeBSD
added 2025/03/04 12:0 a.m.7 views

mozilla -- use-after-free in WebTransport connection

[email protected] reports: It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash...

7.5CVSS7.2AI score0.00497EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/03 12:0 a.m.11 views

vim -- Improper Input Validation in Vim

[email protected] reports: Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Starting with 9.1.0858, the tar.vim plugin uses the ":read" ex command line to append below the cursor position, however the is not...

7.1CVSS7.4AI score0.20775EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/03 12:0 a.m.11 views

electron32 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2025-0445. Security: backported fix for CVE-2025-0998...

5.4CVSS7AI score0.0033EPSS
Exploits0References2
FreeBSD
FreeBSD
added 2025/03/03 12:0 a.m.14 views

unit -- potential security issue

The NGINX Unit team reports: Unit 1.34.2 fixes two issues in the Java language module websocket code. It addresses a potential security issue where we could get a negative payload length that could cause the Java language module processes to enter an infinite loop and consume excess CPU. This was...

6.9CVSS5.6AI score0.00552EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/03/02 12:0 a.m.8 views

vim -- Potential code execution

vim reports: Summary Potential code execution with tar.vim and special crafted tar files Description Vim is distributed with the tar.vim plugin, that allows easy editing and viewing of compressed or uncompressed tar files. Since commit 129a844 Nov 11, 2024 runtimetar: Update tar.vim to support...

7.9AI score
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/27 12:0 a.m.32 views

Spotipy -- Spotipy's cache file, containing spotify auth token, is created with overly broad permissions

[email protected] reports: Spotipy is a lightweight Python library for the Spotify Web API. The CacheHandler class creates a cache file to store the auth token. Prior to version 2.25.1, the file created has rw-r--r-- 644 permissions by default, when it could be locked down to rw-----...

9.8CVSS6.7AI score0.00589EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/02/27 12:0 a.m.3 views

php -- Multiple vulnerabilities

php.net reports: CVE-2025-1735: pgsql extension does not check for errors during escaping CVE-2025-6491: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix CVE-2025-1220: Null byte termination in hostnames...

7.5CVSS7.4AI score0.00953EPSS
Exploits2
FreeBSD
FreeBSD
added 2025/02/27 12:0 a.m.17 views

electron{32,33} -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2025-0611. Security: backported fix for CVE-2025-0612. Security: backported fix for CVE-2025-0999...

8.8CVSS7.4AI score0.00657EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2025/02/26 12:0 a.m.34 views

Gitlab -- Vulnerabilities

Gitlab reports: XSS in k8s proxy endpoint XSS Maven Dependency Proxy HTML injection leads to XSS on self hosted instances Improper Authorisation Check Allows Guest User to Read Security Policy Planner role can read code review analytics in private projects...

8.7CVSS6.9AI score0.00475EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/02/25 12:0 a.m.8 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 1 security fix...

7.5AI score
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/25 12:0 a.m.11 views

xorg server -- Multiple vulnerabilities

The X.Org project reports: CVE-2025-26594: Use-after-free of the root cursor The root cursor is referenced in the xserver as a global variable. If a client manages to free the root cursor, the internal reference points to freed memory and causes a use-after-free. CVE-2025-26595: Buffer overflow i...

7.8CVSS8.1AI score0.00485EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/25 12:0 a.m.15 views

glpi-project -- GLPI multiple vulnerabilities

[email protected] reports: CVE-2024-11955: A vulnerability was found in GLPI up to 10.0.17. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php. The manipulation of the argument redirect leads to open redirect. The...

9.8CVSS6.5AI score0.86182EPSS
Exploits8References9
FreeBSD
FreeBSD
added 2025/02/25 12:0 a.m.8 views

Navidrome -- Authentication bypass in Subsonic API

Deluan reports: In certain Subsonic API endpoints, authentication can be bypassed by using a non-existent username combined with an empty salted password hash. This allows read-only access to the server’s resources, though attempts at write operations fail with a “permission denied” error...

6.9CVSS7.7AI score0.00936EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/02/21 12:0 a.m.52 views

exim -- SQL injection

[email protected] reports: Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization are used, allows remote SQL injection...

9.8CVSS8.1AI score0.75782EPSS
Exploits6References1
FreeBSD
FreeBSD
added 2025/02/21 12:0 a.m.46 views

FreeBSD -- Multiple vulnerabilities in OpenSSH

Problem Description: OpenSSH client host verification error CVE-2025-26465 ssh1 contains a logic error that allows an on-path attacker to impersonate any server during certain conditions when the VerifyHostKeyDNS option is enabled. OpenSSH server denial of service CVE-2025-26466 The OpenSSH clien...

6.8CVSS7.1AI score0.38474EPSS
Exploits5References2
FreeBSD
FreeBSD
added 2025/02/20 12:0 a.m.19 views

qt6-webengine -- Multiple vulnerabilities

Qt qtwebengine-chromium repo reports: Backports for 11 security bugs in Chromium: CVE-2024-11477: 7-Zip Zstd decompression integer underflow CVE-2025-0762: Use after free in DevTools CVE-2025-0996: Inappropriate implementation in Browser UI CVE-2025-0998: Out of bounds memory access in V8...

9.8CVSS8.5AI score0.21985EPSS
Exploits2References1
FreeBSD
FreeBSD
added 2025/02/20 12:0 a.m.4 views

cisco -- OpenH264 Decoding Functions Heap Overflow Vulnerability

Cisco reports: A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, unauthenticated attacker to trigger a heap overflow. This vulnerability is due to a race condition between a Sequence Parameter Set SPS memory allocation and a subsequent non Instantaneous...

8.6CVSS7.5AI score0.00639EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/18 12:0 a.m.8 views

libxml2 -- Stack-based Buffer Overflow

[email protected] reports: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047...

7.4AI score
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/18 12:0 a.m.12 views

exiv2 -- Use after free in TiffSubIfd

Kevin Backhouse reports: A heap buffer overflow was found in Exiv2 versions v0.28.0 to v0.28.4. Versions prior to v0.28.0, such as v0.27.7, are not affected. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. The heap overflo...

9.8CVSS8AI score0.00816EPSS
Exploits1References1
FreeBSD
FreeBSD
added 2025/02/18 12:0 a.m.17 views

chromium -- multiple security fixes

Chrome Releases reports: This update includes 3 security fixes: 394350433 High CVE-2025-0999: Heap buffer overflow in V8. Reported by Seunghyun Lee @0x10n on 2025-02-04 383465163 High CVE-2025-1426: Heap buffer overflow in GPU. Reported by un3xploitable and GF on 2024-12-11 390590778 Medium...

8.8CVSS9.6AI score0.00657EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/18 12:0 a.m.9 views

libxml2 -- Use After Free

[email protected] reports: libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a craft...

9.8CVSS7AI score0.0113EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/02/16 12:0 a.m.14 views

caldera -- Remote Code Execution

MITRE Caldera contributor report: In MITRE Caldera through 4.2.0 and 5.0.0 before 35bc06e, a Remote Code Execution RCE vulnerability was found in the dynamic agent implant compilation functionality of the server. This allows remote attackers to execute arbitrary code on the server that Caldera is...

10CVSS8.8AI score0.23813EPSS
Exploits2References1
Total number of security vulnerabilities6578