Vulnerabilities > Freebsd

DATE CVE VULNERABILITY TITLE RISK
2019-02-12 CVE-2019-5595 Improper Input Validation vulnerability in Freebsd 11.2/12.0
In FreeBSD before 11.2-STABLE(r343782), 11.2-RELEASE-p9, 12.0-STABLE(r343781), and 12.0-RELEASE-p3, kernel callee-save registers are not properly sanitized before return from system calls, potentially allowing some kernel data used in the system call to be exposed.
local
low complexity
freebsd CWE-20
2.1
2019-02-04 CVE-2018-1000998 Cross-site Scripting vulnerability in Freebsd Cvsweb 2.0.4/2.0.5/2.0.6
FreeBSD CVSweb version 2.x contains a Cross Site Scripting (XSS) vulnerability in all pages that can result in limited impact--CVSweb is anonymous & read-only.
network
freebsd CWE-79
4.3
2019-01-31 CVE-2019-6111 Path Traversal vulnerability in multiple products
An issue was discovered in OpenSSH 7.9.
5.9
2019-01-03 CVE-2018-17161 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Freebsd 11.2/12.0
In FreeBSD before 11.2-STABLE(r348229), 11.2-RELEASE-p7, 12.0-STABLE(r342228), and 12.0-RELEASE-p1, insufficient validation of network-provided data in bootpd may make it possible for a malicious attacker to craft a bootp packet which could cause a stack buffer overflow.
network
low complexity
freebsd CWE-119
7.5
2018-12-04 CVE-2018-17160 Out-of-bounds Write vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r341486) and 11.2-RELEASE-p6, insufficient bounds checking in one of the device models provided by bhyve can permit a guest operating system to overwrite memory in the bhyve host possibly permitting arbitrary code execution.
network
low complexity
freebsd CWE-787
critical
10.0
2018-12-04 CVE-2018-17159 Resource Exhaustion vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check in the READDIRPLUS NFS request.
network
low complexity
freebsd CWE-400
7.8
2018-12-04 CVE-2018-17158 Integer Overflow or Wraparound vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error can occur when handling the client address length field in an NFSv4 request.
network
low complexity
freebsd CWE-190
7.8
2018-12-04 CVE-2018-17157 Integer Overflow or Wraparound vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error when handling opcodes can cause memory corruption by sending a specially crafted NFSv4 request.
network
low complexity
freebsd CWE-190
critical
10.0
2018-11-28 CVE-2018-17156 Out-of-bounds Write vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r340268) and 11.2-RELEASE-p5, due to incorrectly accounting for padding on 64-bit platforms, a buffer underwrite could occur when constructing an ICMP reply packet when using a non-standard value for the net.inet.icmp.quotelen sysctl.
network
freebsd CWE-787
4.3
2018-09-28 CVE-2018-6925 NULL Pointer Dereference vulnerability in Freebsd
In FreeBSD before 11.2-STABLE(r338986), 11.2-RELEASE-p4, 11.1-RELEASE-p15, 10.4-STABLE(r338985), and 10.4-RELEASE-p13, due to improper maintenance of IPv6 protocol control block flags through various failure paths, an unprivileged authenticated local user may be able to cause a NULL pointer dereference causing the kernel to crash.
local
low complexity
freebsd CWE-476
4.9