Vulnerabilities > Freebsd > Low

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2011-1075 Race Condition vulnerability in Freebsd
FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in.
network
high complexity
freebsd CWE-362
3.7
2020-02-18 CVE-2019-15875 Improper Initialization vulnerability in Freebsd 11.3/12.0/12.1
In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r354735, and 11.3-RELEASE before 11.3-RELEASE-p6, due to incorrect initialization of a stack data structure, core dump files may contain up to 20 bytes of kernel data previously stored on the stack.
local
low complexity
freebsd CWE-665
3.3
2019-04-17 CVE-2019-9495 Information Exposure Through Discrepancy vulnerability in multiple products
The implementations of EAP-PWD in hostapd and wpa_supplicant are vulnerable to side-channel attacks as a result of cache access patterns.
3.7
2017-11-16 CVE-2017-1086 Information Exposure vulnerability in Freebsd
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24, not all information in the struct ptrace_lwpinfo is relevant for the state of any thread, and the kernel does not fill the irrelevant bytes or short strings.
local
low complexity
freebsd CWE-200
3.3
2017-11-16 CVE-2017-1088 Information Exposure vulnerability in Freebsd
In FreeBSD before 11.1-STABLE, 11.1-RELEASE-p4, 11.0-RELEASE-p15, 10.4-STABLE, 10.4-RELEASE-p3, and 10.3-RELEASE-p24, the kernel does not properly clear the memory of the kld_file_stat structure before filling the data.
local
low complexity
freebsd CWE-200
3.3