Vulnerabilities > Freebsd

DATE CVE VULNERABILITY TITLE RISK
2017-10-05 CVE-2017-15037 Race Condition vulnerability in Freebsd
In FreeBSD through 11.1, the smb_strdupin function in sys/netsmb/smb_subr.c has a race condition with a resultant out-of-bounds read, because it can cause t2p->t_name strings to lack a final '\0' character.
network
freebsd CWE-362
6.8
2017-07-28 CVE-2017-6259 Unspecified vulnerability in Nvidia GPU Driver
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect detection and recovery from an invalid state produced by specific user actions may lead to denial of service.
7.1
2017-07-28 CVE-2017-6257 NULL Pointer Dereference vulnerability in Nvidia GPU Driver
NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a NULL pointer dereference may lead to denial of service or potential escalation of privileges
local
low complexity
nvidia freebsd linux microsoft oracle CWE-476
7.2
2017-07-25 CVE-2015-1417 Resource Exhaustion vulnerability in Freebsd
The inet module in FreeBSD 10.2x before 10.2-PRERELEASE, 10.2-BETA2-p2, 10.2-RC1-p1, 10.1x before 10.1-RELEASE-p16, 9.x before 9.3-STABLE, 9.3-RELEASE-p21, and 8.x before 8.4-STABLE, 8.4-RELEASE-p35 on systems with VNET enabled and at least 16 VNET instances allows remote attackers to cause a denial of service (mbuf consumption) via multiple concurrent TCP connections.
network
low complexity
freebsd CWE-400
5.0
2017-07-13 CVE-2017-11103 Insufficient Verification of Data Authenticity vulnerability in multiple products
Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre attacks because it obtains service-principal names in a way that violates the Kerberos 5 protocol specification.
6.8
2017-02-15 CVE-2017-0321 NULL Pointer Dereference vulnerability in Nvidia GPU Driver
All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential escalation of privileges.
local
low complexity
nvidia freebsd linux microsoft oracle CWE-476
7.2
2017-02-15 CVE-2017-0318 Improper Input Validation vulnerability in Nvidia GPU Driver
All versions of NVIDIA Linux GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper validation of an input parameter may cause a denial of service on the system.
local
low complexity
nvidia freebsd microsoft oracle CWE-20
4.9
2017-02-15 CVE-2017-0311 Incorrect Permission Assignment for Critical Resource vulnerability in Nvidia GPU Driver
NVIDIA GPU Display Driver R378 contains a vulnerability in the kernel mode layer handler where improper access control may lead to denial of service or possible escalation of privileges.
local
low complexity
nvidia freebsd linux microsoft oracle CWE-732
7.2
2017-02-15 CVE-2017-0310 Improper Privilege Management vulnerability in Nvidia GPU Driver
All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper access controls allowing unprivileged user to cause a denial of service.
local
low complexity
nvidia freebsd linux microsoft oracle CWE-269
4.9
2017-02-15 CVE-2017-0309 Integer Overflow or Wraparound vulnerability in Nvidia GPU Driver
All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where multiple integer overflows may cause improper memory allocation leading to a denial of service or potential escalation of privileges.
local
low complexity
nvidia freebsd linux microsoft oracle CWE-190
7.2