This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/o:freebsd:freebsd |
| Detail | |||
|---|---|---|---|
| Vendor | Freebsd | First view | 1990-05-09 |
| Product | Freebsd | Last view | 2019-08-30 |
| Version | Type | Os | |
| Edition | |||
| Language | |||
| Update | |||
Activity : Overall
COMMON PLATFORM ENUMERATION : Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:/o:freebsd:freebsd:4.0 | 85 |
| cpe:/o:freebsd:freebsd:4.2 | 81 |
| cpe:/o:freebsd:freebsd:4.1 | 80 |
| cpe:/o:freebsd:freebsd:4.1.1 | 77 |
| cpe:/o:freebsd:freebsd:3.0 | 70 |
Related : CVE
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.8 | 2019-08-30 | CVE-2019-5612 | Network | Low | None Requ... | |
| 7.8 | 2019-08-30 | CVE-2019-5611 | Network | Low | None Requ... | |
| 5 | 2019-08-30 | CVE-2019-5610 | Network | Low | None Requ... | |
| 6.4 | 2019-08-30 | CVE-2019-5609 | Network | Low | None Requ... | |
| 7.5 | 2019-08-30 | CVE-2019-5608 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 7.2 | 2019-07-25 | CVE-2019-5607 | Local | Low | None Requ... | |
| 7.2 | 2019-07-25 | CVE-2019-5606 | Local | Low | None Requ... | |
| 6.8 | 2019-07-25 | CVE-2019-5605 | Network | Low | Requires ... | |
| 8.5 | 2019-07-25 | CVE-2019-5604 | Network | Low | Requires ... | |
| 7.2 | 2019-07-25 | CVE-2019-5603 | Local | Low | None Requ... | |
| 9 | 2019-07-03 | CVE-2019-5602 | Network | Low | Requires ... | |
| 4 | 2019-07-03 | CVE-2019-5601 | Network | Low | Requires ... | |
| 7.5 | 2019-07-03 | CVE-2019-5600 | Network | Low | None Requ... | |
| 7.8 | 2019-07-02 | CVE-2019-5599 | Network | Low | None Requ... | |
| 5 | 2019-05-15 | CVE-2019-8936 | Network | Low | None Requ... | |
| 5 | 2019-05-15 | CVE-2019-5598 | Network | Low | None Requ... | |
| 6.4 | 2019-05-15 | CVE-2019-5597 | Network | Low | None Requ... | |
| 7.5 | 2019-01-03 | CVE-2018-17161 | Network | Low | None Requ... | |
| 10 | 2018-12-04 | CVE-2018-17160 | Network | Low | None Requ... | |
| 7.8 | 2018-12-04 | CVE-2018-17159 | Network | Low | None Requ... | |
| 7.8 | 2018-12-04 | CVE-2018-17158 | Network | Low | None Requ... | |
| 10 | 2018-12-04 | CVE-2018-17157 | Network | Low | None Requ... | |
| 4.3 | 2018-11-28 | CVE-2018-17156 | Network | Medium | None Requ... | |
| 4.9 | 2018-09-28 | CVE-2018-6925 | Local | Low | None Requ... |
CWE : Common Weakness Enumeration
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| % | id | Name |
|---|---|---|
| 18% (35) | CWE-264 | Permissions, Privileges, and Access Controls |
| 13% (26) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 12% (23) | CWE-20 | Improper Input Validation |
| 11% (21) | CWE-200 | Information Exposure |
| 6% (13) | CWE-399 | Resource Management Errors |
| % | id | Name |
|---|---|---|
| 6% (13) | CWE-189 | Numeric Errors |
| 5% (10) | CWE-330 | Use of Insufficiently Random Values |
| 3% (6) | CWE-476 | NULL Pointer Dereference |
| 3% (6) | CWE-190 | Integer Overflow or Wraparound |
| 2% (5) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 2% (4) | CWE-362 | Race Condition |
| 2% (4) | CWE-310 | Cryptographic Issues |
| 2% (4) | CWE-125 | Out-of-bounds Read |
| 1% (2) | CWE-787 | Out-of-bounds Write |
| 1% (2) | CWE-416 | Use After Free |
| 1% (2) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
| 1% (2) | CWE-16 | Configuration |
| 0% (1) | CWE-732 | Incorrect Permission Assignment for Critical Resource |
| 0% (1) | CWE-415 | Double Free |
| 0% (1) | CWE-352 | Cross-Site Request Forgery (CSRF) |
| 0% (1) | CWE-345 | Insufficient Verification of Data Authenticity |
| 0% (1) | CWE-287 | Improper Authentication |
| 0% (1) | CWE-269 | Improper Privilege Management |
| 0% (1) | CWE-255 | Credentials Management |
| 0% (1) | CWE-134 | Uncontrolled Format String |
CAPEC : Common Attack Pattern Enumeration & Classification
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Name |
|---|---|
| CAPEC-1 | Accessing Functionality Not Properly Constrained by ACLs |
| CAPEC-8 | Buffer Overflow in an API Call |
| CAPEC-9 | Buffer Overflow in Local Command-Line Utilities |
| CAPEC-10 | Buffer Overflow via Environment Variables |
| CAPEC-13 | Subverting Environment Variable Values |
| id | Name |
|---|---|
| CAPEC-14 | Client-side Injection-induced Buffer Overflow |
| CAPEC-17 | Accessing, Modifying or Executing Executable Files |
| CAPEC-18 | Embedding Scripts in Nonscript Elements |
| CAPEC-24 | Filter Failure through Buffer Overflow |
| CAPEC-25 | Forced Deadlock |
| CAPEC-26 | Leveraging Race Conditions |
| CAPEC-29 | Leveraging Time-of-Check and Time-of-Use (TOCTOU) Race Conditions |
| CAPEC-39 | Manipulating Opaque Client-based Data Tokens |
| CAPEC-42 | MIME Conversion |
| CAPEC-44 | Overflow Binary Resource File |
| CAPEC-45 | Buffer Overflow via Symbolic Links |
| CAPEC-46 | Overflow Variables and Tags |
| CAPEC-47 | Buffer Overflow via Parameter Expansion |
| CAPEC-51 | Poison Web Service Registry |
| CAPEC-58 | Restful Privilege Elevation |
| CAPEC-59 | Session Credential Falsification through Prediction |
| CAPEC-60 | Reusing Session IDs (aka Session Replay) |
| CAPEC-63 | Simple Script Injection |
| CAPEC-67 | String Format Overflow in syslog() |
| CAPEC-73 | User-Controlled Filename |
SAINT Exploits
| Description | Link |
|---|---|
| Telnetd Encryption Key ID Code Execution | More info here |
Open Source Vulnerability Database (OSVDB)
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 78020 | FreeBSD telnetd Multiple telnet/libtelnet/encrypt.c encrypt_keyid() Function ... |
| 76945 | OpenPAM Pam Services Traversal Local Privilege Escalation |
| 75788 | FreeBSD UNIX Domain Socket sys/kern/uipc_usrreq.c uipc_bind() Function Local ... |
| 75249 | OpenSSH sftp-glob.c remote_glob Function Glob Expression Parsing Remote DoS |
| 75248 | OpenSSH sftp.c process_put Function Glob Expression Parsing Remote DoS |
| id | Description |
|---|---|
| 75010 | crontab crontab.c realpath() Temporary File Symlink Directory Enumeration |
| 75009 | crontab crontab.c stat() Call Temporary File Symlink Arbitrary File Enumeration |
| 75007 | libc glob Expression Pathname Matching Remote DoS (2010-4754) |
| 74934 | KAME IPSEC Implementations Spoofed ESP Packet DoS |
| 74927 | X.Org libXfont src/fontfile/decompress.c BufCompressedFill() Function LZW Dec... |
| 73388 | Multiple Vendor libc Implentation fnmatch.c Memory Consumption DoS |
| 73383 | Apache HTTP Server Portable Runtime (APR) Library apr_fnmatch() Infinite Loop... |
| 73241 | VMware Multiple Products mount.vmhgfs Symlink Arbitrary Guest OS File Manipul... |
| 72130 | FreeBSD mountd mountd.c makemask Function NFS Mount Request Access Restrictio... |
| 70681 | syslog-ng Type Casting Log File Permission Weakness Local File Modification |
| 68313 | FreeBSD pseudofs pfs_getattr() Function NULL Dereference Local Privilege Esca... |
| 68291 | NetBSD Kernel netsmb Module smb_subr.c /dev/nsmb IOCTL Operation Integer Sign... |
| 67346 | Multiple Unix Vendor rpc.pcnfsd pr_init() Symlink Arbitrary File Permission M... |
| 67330 | Coda Filesystem Kernel Module IOCTL ViceIoctl Struct Local Memory Disclosure |
| 66316 | FreeBSD Read-only Flag Copy Weakness Duplicate mbuf Buffer Reference Sendfile... |
| 65152 | FreeBSD jail(8) Descendant Process CWD Escape Arbitrary File Access |
| 65036 | FreeBSD nfsclient nfs_vfsops.c nfs_mount() Function File Handle Buffer Mounti... |
| 64949 | OPIE readrec.c __opiereadrec() Off-by-One Remote Code Execution |
| 63646 | J Programming Language libc dtoa Implementation Floating Point Parsing Memory... |
| 63641 | Matlab libc dtoa Implementation Floating Point Parsing Memory Corruption |
ExploitDB Exploits
| id | Description |
|---|---|
| 26454 | FreeBSD 9 Address Space Manipulation Privilege Escalation |
| 26076 | Cisco ASA < 8.4.4.6|8.2.5.32 Ethernet Information Leak |
| 22131 | Linux Kernel 2.0.x/2.2.x/2.4.x,FreeBSD 4.x Network Device Driver Frame Paddin... |
| 16951 | FreeBSD <= 6.4 Netgraph Local Privledge Escalation Exploit |
| 12762 | FreeBSD 8.0 ftpd off-by one PoC (FreeBSD-SA-10:05) |
| id | Description |
|---|---|
| 10380 | Sunbird 0.9 Array Overrun (code execution) 0day |
| 10187 | Opera 10.01 Remote Array Overrun |
| 10186 | K-Meleon 1.5.3 Remote Array Overrun |
| 10185 | SeaMonkey 1.1.8 Remote Array Overrun |
| 10184 | KDE KDELibs 4.3.3 Remote Array Overrun |
| 9082 | FreeBSD 7.0/7.1 vfs.usermount Local Privilege Escalation Exploit |
| 3555 | Ethernet Device Drivers Frame Padding - Info Leakage Exploit (Etherleak) |
OpenVAS Exploits
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2012-12-18 | Name : Fedora Update for xen FEDORA-2012-19828 File : nvt/gb_fedora_2012_19828_xen_fc16.nasl |
| 2012-12-14 | Name : Fedora Update for xen FEDORA-2012-19717 File : nvt/gb_fedora_2012_19717_xen_fc17.nasl |
| 2012-12-13 | Name : SuSE Update for xen openSUSE-SU-2012:0886-1 (xen) File : nvt/gb_suse_2012_0886_1.nasl |
| 2012-11-23 | Name : Fedora Update for xen FEDORA-2012-18242 File : nvt/gb_fedora_2012_18242_xen_fc17.nasl |
| 2012-11-23 | Name : Fedora Update for xen FEDORA-2012-18249 File : nvt/gb_fedora_2012_18249_xen_fc16.nasl |
| id | Description |
|---|---|
| 2012-11-15 | Name : Fedora Update for xen FEDORA-2012-17204 File : nvt/gb_fedora_2012_17204_xen_fc17.nasl |
| 2012-11-15 | Name : Fedora Update for xen FEDORA-2012-17408 File : nvt/gb_fedora_2012_17408_xen_fc16.nasl |
| 2012-10-03 | Name : Gentoo Security Advisory GLSA 201209-24 (PostgreSQL) File : nvt/glsa_201209_24.nasl |
| 2012-09-26 | Name : Gentoo Security Advisory GLSA 201209-03 (php) File : nvt/glsa_201209_03.nasl |
| 2012-09-25 | Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004) File : nvt/gb_macosx_su12-004.nasl |
| 2012-09-22 | Name : Fedora Update for xen FEDORA-2012-13434 File : nvt/gb_fedora_2012_13434_xen_fc17.nasl |
| 2012-09-22 | Name : Fedora Update for xen FEDORA-2012-13443 File : nvt/gb_fedora_2012_13443_xen_fc16.nasl |
| 2012-09-10 | Name : Slackware Advisory SSA:2011-133-01 apr/apr-util File : nvt/esoft_slk_ssa_2011_133_01.nasl |
| 2012-08-30 | Name : Fedora Update for php FEDORA-2012-10936 File : nvt/gb_fedora_2012_10936_php_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for xen FEDORA-2012-11182 File : nvt/gb_fedora_2012_11182_xen_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for xen FEDORA-2012-11755 File : nvt/gb_fedora_2012_11755_xen_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for postgresql FEDORA-2012-8924 File : nvt/gb_fedora_2012_8924_postgresql_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for postgresql FEDORA-2012-12156 File : nvt/gb_fedora_2012_12156_postgresql_fc16.nasl |
| 2012-08-30 | Name : Fedora Update for postgresql FEDORA-2012-12165 File : nvt/gb_fedora_2012_12165_postgresql_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for xen FEDORA-2012-9386 File : nvt/gb_fedora_2012_9386_xen_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for maniadrive FEDORA-2012-9490 File : nvt/gb_fedora_2012_9490_maniadrive_fc17.nasl |
| 2012-08-30 | Name : Fedora Update for php FEDORA-2012-9490 File : nvt/gb_fedora_2012_9490_php_fc17.nasl |
| 2012-08-24 | Name : Fedora Update for xen FEDORA-2012-11785 File : nvt/gb_fedora_2012_11785_xen_fc16.nasl |
| 2012-08-10 | Name : Debian Security Advisory DSA 2491-1 (postgresql-8.4) File : nvt/deb_2491_1.nasl |
| 2012-08-10 | Name : Debian Security Advisory DSA 2501-1 (xen) File : nvt/deb_2501_1.nasl |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0222 | Multiple Security Vulnerabilities in Apple iOS Severity : Category I - VMSKEY : V0061471 |
| 2015-B-0094 | NVIDIA GPU Driver for FreeBSD Privilege Escalation Vulnerability Severity : Category II - VMSKEY : V0061147 |
| 2013-A-0151 | ISC BIND 9 Remote Denial of Service Vulnerability Severity : Category I - VMSKEY : V0039823 |
| 2012-A-0056 | Multiple Vulnerabilities in VMWare ESX 4.0 and ESXi 4.0 Severity : Category I - VMSKEY : V0031979 |
| 2011-A-0075 | Multiple Vulnerabilities in VMware Products Severity : Category I - VMSKEY : V0028311 |
| id | Description |
|---|---|
| 2008-B-0070 | Multiple Vendors IPv6 Neighbor Discovery Protocol Spoofing Vulnerability Severity : Category II - VMSKEY : V0017557 |
Snort® IPS/IDS
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Description |
|---|---|
| 2014-01-10 | record route rr denial of service attempt RuleID : 8730 - Type : PROTOCOL-ICMP - Revision : 6 |
| 2014-01-10 | vrfy decode RuleID : 672-community - Type : SERVER-MAIL - Revision : 17 |
| 2014-01-10 | vrfy decode RuleID : 672 - Type : SERVER-MAIL - Revision : 17 |
| 2014-01-10 | Sendmail expn decode RuleID : 659-community - Type : SERVER-MAIL - Revision : 18 |
| 2014-01-10 | Sendmail expn decode RuleID : 659 - Type : SERVER-MAIL - Revision : 18 |
| Date | Description |
|---|---|
| 2014-01-10 | RCPT TO overflow RuleID : 654-community - Type : SERVER-MAIL - Revision : 28 |
| 2014-01-10 | RCPT TO overflow RuleID : 654 - Type : SERVER-MAIL - Revision : 28 |
| 2014-01-10 | portmap pcnfsd request UDP RuleID : 581-community - Type : PROTOCOL-RPC - Revision : 18 |
| 2014-01-10 | portmap pcnfsd request UDP RuleID : 581 - Type : PROTOCOL-RPC - Revision : 18 |
| 2014-01-10 | portmap amountd request UDP RuleID : 576-community - Type : PROTOCOL-RPC - Revision : 17 |
| 2014-01-10 | portmap amountd request UDP RuleID : 576 - Type : PROTOCOL-RPC - Revision : 17 |
| 2014-01-10 | AMD Overflow RuleID : 573 - Type : RPC - Revision : 9 |
| 2019-08-31 | Apple DMG ffs_mountfs integer overflow exploit attempt RuleID : 50853 - Type : FILE-OTHER - Revision : 1 |
| 2019-08-31 | Apple DMG ffs_mountfs integer overflow exploit attempt RuleID : 50852 - Type : FILE-OTHER - Revision : 1 |
| 2018-09-19 | ntpq decode array buffer overflow attempt RuleID : 47585 - Type : SERVER-OTHER - Revision : 4 |
| 2018-07-10 | Microsoft Windows Interrupt Service Routine stack rollback attempt RuleID : 46910 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows Interrupt Service Routine stack rollback attempt RuleID : 46909 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows processor modification return to user-mode attempt RuleID : 46908 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows processor modification return to user-mode attempt RuleID : 46907 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows malicious CONTEXT structure creation attempt RuleID : 46906 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows malicious CONTEXT structure creation attempt RuleID : 46905 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows SYSTEM token stealing attempt RuleID : 46904 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-10 | Microsoft Windows SYSTEM token stealing attempt RuleID : 46903 - Type : INDICATOR-COMPROMISE - Revision : 2 |
| 2018-07-03 | Microsoft Windows kernel privilege escalation attempt RuleID : 46835 - Type : OS-WINDOWS - Revision : 1 |
| 2018-07-03 | Microsoft Windows kernel privilege escalation attempt RuleID : 46834 - Type : OS-WINDOWS - Revision : 1 |
Nessus® Vulnerability Scanner
This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-10 | Name : The remote device is affected by multiple vulnerabilities. File : juniper_space_jsa10917_183R1.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-a7ac26523d.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-d3cb6f113c.nasl - Type : ACT_GATHER_INFO |
| 2018-12-11 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_32498c8ffc8411e8be12a4badb2f4699.nasl - Type : ACT_GATHER_INFO |
| 2018-11-30 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_sa-18-13_nfs.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2018-11-27 | Name : The remote Virtuozzo host is missing a security update. File : Virtuozzo_VZLSA-2017-2911.nasl - Type : ACT_GATHER_INFO |
| 2018-11-21 | Name : The remote EulerOS Virtualization host is missing a security update. File : EulerOS_SA-2018-1378.nasl - Type : ACT_GATHER_INFO |
| 2018-11-13 | Name : The remote Debian host is missing a security update. File : debian_DLA-1573.nasl - Type : ACT_GATHER_INFO |
| 2018-11-13 | Name : The remote Debian host is missing a security update. File : debian_DLA-1577.nasl - Type : ACT_GATHER_INFO |
| 2018-11-13 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_791841a3d4844878890992ef9ce424f4.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09618.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09619.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09620.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09621.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09622.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09623.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09624.nasl - Type : ACT_GATHER_INFO |
| 2018-11-09 | Name : The remote AIX host is missing a security patch. File : aix_IJ09625.nasl - Type : ACT_GATHER_INFO |
| 2018-11-02 | Name : The remote Debian host is missing a security update. File : debian_DLA-1564.nasl - Type : ACT_GATHER_INFO |
| 2018-11-02 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL17403481.nasl - Type : ACT_GATHER_INFO |
| 2018-11-02 | Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL21344224.nasl - Type : ACT_GATHER_INFO |
| 2018-09-18 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1263.nasl - Type : ACT_GATHER_INFO |
| 2018-09-18 | Name : The remote EulerOS Virtualization host is missing multiple security updates. File : EulerOS_SA-2018-1270.nasl - Type : ACT_GATHER_INFO |
| 2018-09-13 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_a67c122ab69311e8ac58a4badb2f4699.nasl - Type : ACT_GATHER_INFO |
| 2018-08-23 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_359e1548a65211e8805ba4badb2f4699.nasl - Type : ACT_GATHER_INFO |
