Vulnerabilities > Freebsd

DATE CVE VULNERABILITY TITLE RISK
2023-09-06 CVE-2023-4809 Unspecified vulnerability in Freebsd
In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed.
network
low complexity
freebsd
7.5
2023-08-01 CVE-2023-3107 Integer Overflow or Wraparound vulnerability in multiple products
A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field.
network
low complexity
freebsd netapp CWE-190
7.5
2023-08-01 CVE-2023-3494 Classic Buffer Overflow vulnerability in Freebsd 13.1/13.2
The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports.
local
low complexity
freebsd CWE-120
8.8
2023-06-22 CVE-2023-3326 Improper Authentication vulnerability in Freebsd
pam_krb5 authenticates a user by essentially running kinit with the password, getting a ticket-granting ticket (tgt) from the Kerberos KDC (Key Distribution Center) over the network, as a way to verify the password.
network
low complexity
freebsd CWE-287
critical
9.8
2023-02-08 CVE-2023-0751 Unspecified vulnerability in Freebsd 12.3/12.4/13.1
When GELI reads a key file from standard input, it does not reuse the key file to initialize multiple providers at once resulting in the second and subsequent devices silently using a NULL key as the user key file.
network
low complexity
freebsd
6.5
2022-09-06 CVE-2022-32264 Improper Handling of Exceptional Conditions vulnerability in Freebsd
sys/netinet/tcp_timer.h in FreeBSD before 7.0 contains a denial-of-service (DoS) vulnerability due to improper handling of TSopt on TCP connections.
network
low complexity
freebsd CWE-755
7.5
2022-01-18 CVE-2021-29632 Unspecified vulnerability in Freebsd 12.2/13.0
In FreeBSD 13.0-STABLE before n247428-9352de39c3dc, 12.2-STABLE before r370674, 13.0-RELEASE before p6, and 12.2-RELEASE before p12, certain conditions involving use of the highlight buffer while text is scrolling on the console, console data may overwrite data structures associated with the system console or other kernel memory.
network
low complexity
freebsd
5.0
2021-10-19 CVE-2011-1075 Race Condition vulnerability in Freebsd
FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in.
network
freebsd CWE-362
4.3
2021-08-30 CVE-2021-29630 Out-of-bounds Write vulnerability in Freebsd 11.4/12.2/13.0
In FreeBSD 13.0-STABLE before n246938-0729ba2f49c9, 12.2-STABLE before r370383, 11.4-STABLE before r370381, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, the ggatec daemon does not validate the size of a response before writing it to a fixed-sized buffer allowing a malicious attacker in a privileged network position to overwrite the stack of ggatec and potentially execute arbitrary code.
network
high complexity
freebsd CWE-787
7.6
2021-08-30 CVE-2021-29631 Use of Uninitialized Resource vulnerability in Freebsd 11.4/12.2/13.0
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO-based device models in bhyve failed to handle errors when fetching I/O descriptors.
local
low complexity
freebsd CWE-908
7.2