Software Detail

Software Informaton Top

Operating Systems

Software Detail

FreeBSD

Number Of NVD

462

CRITICAL

HIGH

197

MEDIUM

182

LOW

URL	https://www.freebsd.org/
Explanation	Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years. We plan to release updates to the major versions every two years. Older versions will be supported until three months after a new minor version is released.
Tag	BSD

Add Information URL

No	Type	Name	URL
1			https://www.freebsd.org/security/
2			https://www.freebsd.org/releases/
3			https://www.freebsd.org/security/unsupported.html

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Critical	High	Medium	Low
1	FreeBSD 13	13.2	April 11, 2023	April 13, 2021	April 13, 2021	2	15	5	0
2	FreeBSD 12	12.4	Dec. 5, 2022	Dec. 11, 2018	June 30, 2024	18	37	21	2
3	FreeBSD 11	11.4	June 16, 2020	Oct. 10, 2016	Sept. 30, 2021	21	46	39	2
4	FreeBSD 10	10.4	Jan. 20, 2014	Jan. 20, 2014	Feb. 28, 2015	7	38	45	2
5	FreeBSD 9	9.3	July 16, 2014	Jan. 10, 2012	Dec. 31, 2016	5	36	32	6
6	FreeBSD 8	8.4	June 9, 2013	Nov. 25, 2009	Aug. 1, 2015	5	36	32	6
7	FreeBSD 7	7.4	Feb. 24, 2011	Feb. 27, 2008	Feb. 28, 2013	5	35	30	5
8	FreeBSD 6	6.4	Nov. 28, 2008	Nov. 4, 2005	Nov. 30, 2010	6	41	45	15
9	FreeBSD 5	5.5	May 25, 2006	Nov. 6, 2004	May 31, 2008	7	40	49	18
10	FreeBSD 4	4.0		March 14, 2000	Jan. 31, 2007	8	65	60	23
11	FreeBSD 3	3.0		Oct. 16, 1998	Jan. 1, 1900	6	55	46	16
12	FreeBSD 2	2.0.5		Nov. 22, 1994	Jan. 1, 1900	6	49	40	10
13	FreeBSD 1	1.0		Oct. 1, 1993	Jan. 1, 1900	25	90	87	9
14	FreeBSD 0.4_1	0.4_1			Jan. 1, 1900	6	25	29	4

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or higher	or less	less than	Update date Published date	Show Affected	Exploit PoC Search
1	5.3 -	MEDIUM Network	sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowi…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2023-51765	cpe:2.3:o:freebsd:freebsd::			11.0	2024-01-18 12:15 2023-12-24	Show	GitHub Exploit DB Packet Storm

2	5.9 -	MEDIUM Network	The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from…	CWE-354 Improper Validation of Integrity Check Value	CVE-2023-48795	cpe:2.3:o:freebsd:freebsd::		12.4		2024-05-2 03:15 2023-12-19	Show	GitHub Exploit DB Packet Storm

3	7.5 -	HIGH Network	In versions of FreeBSD 14.0-RELEASE before 14-RELEASE-p2, FreeBSD 13.2-RELEASE before 13.2-RELEASE-p7 and FreeBSD 12.4-RELEASE before 12.4-RELEASE-p9, the pf(4) packet filter incorrectly validates TC…	NVD-CWE-noinfo	CVE-2023-6534	cpe:2.3:o:freebsd:freebsd:14.0:rc4-p1 cpe:2.3:o:freebsd:freebsd:14.0:rc3 cpe:2.3:o:freebsd:freebsd:14.0:p1 cpe…				2024-01-12 23:15 2023-12-13	Show	GitHub Exploit DB Packet Storm

4	6.5 -	MEDIUM Network	When a program running on an affected system appends data to a file via an NFS client mount, the bug can cause the NFS client to fail to copy in the data to be written but proceed as though the copy …	NVD-CWE-noinfo	CVE-2023-6660	cpe:2.3:o:freebsd:freebsd:14.0:rc4-p1 cpe:2.3:o:freebsd:freebsd:14.0:rc3 cpe:2.3:o:freebsd:freebsd:14.0:p2 cpe…				2024-03-23 04:15 2023-12-13	Show	GitHub Exploit DB Packet Storm

5	7.5 -	HIGH Network	In versions of FreeBSD 13-RELEASE before 13-RELEASE-p5, under certain circumstances the cap_net libcasper(3) service incorrectly validates that updated constraints are strictly subsets of the active …	NVD-CWE-noinfo	CVE-2023-5978	cpe:2.3:o:freebsd:freebsd:13.2:p4 cpe:2.3:o:freebsd:freebsd:13.2:p3 cpe:2.3:o:freebsd:freebsd:13.2:p2 cpe:2.3:…	13.0		13.2	2023-12-14 19:15 2023-11-8	Show	GitHub Exploit DB Packet Storm

6	9.8 -	CRITICAL Network	In versions of FreeBSD 12.4-RELEASE prior to 12.4-RELEASE-p7 and FreeBSD 13.2-RELEASE prior to 13.2-RELEASE-p5 the __sflush() stdio function in libc does not correctly update FILE objects' write spac…	CWE-787 CWE-131 Out-of-bounds Write Incorrect Calculation of Buffer Size	CVE-2023-5941	cpe:2.3:o:freebsd:freebsd:13.2:p4 cpe:2.3:o:freebsd:freebsd:13.2:p3 cpe:2.3:o:freebsd:freebsd:13.2:p2 cpe:2.3:…	13.0		12.4 13.2	2023-12-14 19:15 2023-11-8	Show	GitHub Exploit DB Packet Storm

7	5.5 -	MEDIUM Local	On CPU 0 the check for the SMCCC workaround is called before SMCCC support has been initialized. This resulted in no speculative execution workarounds being installed on CPU 0.	CWE-665 Improper Initialization	CVE-2023-5370	cpe:2.3:o:freebsd:freebsd:13.2:-				2023-11-24 18:15 2023-10-4	Show	GitHub Exploit DB Packet Storm

8	7.1 -	HIGH Local	Before correction, the copy_file_range system call checked only for the CAP_READ and CAP_WRITE capabilities on the input and output file descriptors, respectively. Using an offset is logically equiv…	CWE-273 Improper Check for Dropped Privileges	CVE-2023-5369	cpe:2.3:o:freebsd:freebsd:13.2:-				2023-11-24 18:15 2023-10-4	Show	GitHub Exploit DB Packet Storm

9	6.5 -	MEDIUM Network	On an msdosfs filesystem, the 'truncate' or 'ftruncate' system calls under certain circumstances populate the additional space in the file with unallocated data from the underlying disk device, rathe…	CWE-1188 Insecure Default Initialization of Resource	CVE-2023-5368	cpe:2.3:o:freebsd:freebsd:13.2:p3 cpe:2.3:o:freebsd:freebsd:13.2:p2 cpe:2.3:o:freebsd:freebsd:13.2:p1 cpe:2.3:…	13.0		12.4 13.2	2023-11-30 06:15 2023-10-4	Show	GitHub Exploit DB Packet Storm

10	7.5 -	HIGH Network	In pf packet processing with a 'scrub fragment reassemble' rule, a packet containing multiple IPv6 fragment headers would be reassembled, and then immediately processed. That is, a packet with multi…	NVD-CWE-Other	CVE-2023-4809	cpe:2.3:o:freebsd:freebsd:13.2:p2 cpe:2.3:o:freebsd:freebsd:13.2:p1 cpe:2.3:o:freebsd:freebsd:13.2:- cpe:2.3:o…	13.0		12.4 13.2	2023-12-22 07:15 2023-09-7	Show	GitHub Exploit DB Packet Storm