Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
FreeBSD Number Of NVD 488 CRITICAL 29 HIGH 219 MEDIUM 185 LOW 55
URL https://www.freebsd.org/
Explanation Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years.
We plan to release updates to the major versions every two years.
Older versions will be supported until three months after a new minor version is released.
Tag
  • BSD

Add Information URL
No Type Name URL
1 https://www.freebsd.org/security/
2 https://www.freebsd.org/releases/
3 https://www.freebsd.org/security/unsupported.html

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
11 FreeBSD 15 15.1 June 16, 2026 June 16, 2026 March 31, 2027 March 31, 2027 0 0 0 0
12 FreeBSD 13 13.2 April 11, 2023 April 13, 2021 April 13, 2021 3 29 6 0
13 FreeBSD 12 12.4 Dec. 5, 2022 Dec. 11, 2018 June 30, 2024 18 39 22 2
14 FreeBSD 11 11.4 June 16, 2020 Oct. 10, 2016 Sept. 30, 2021 21 48 40 2
15 FreeBSD 10 10.4 Jan. 20, 2014 Jan. 20, 2014 Feb. 28, 2015 7 40 46 2
16 FreeBSD 9 9.3 July 16, 2014 Jan. 10, 2012 Dec. 31, 2016 5 38 33 6
17 FreeBSD 8 8.4 June 9, 2013 Nov. 25, 2009 Aug. 1, 2015 5 38 33 6
18 FreeBSD 7 7.4 Feb. 24, 2011 Feb. 27, 2008 Feb. 28, 2013 5 37 31 5
19 FreeBSD 6 6.4 Nov. 28, 2008 Nov. 4, 2005 Nov. 30, 2010 6 43 46 15
20 FreeBSD 5 5.5 May 25, 2006 Nov. 6, 2004 May 31, 2008 7 42 50 18
21 FreeBSD 4 4.0 March 14, 2000 Jan. 31, 2007 8 67 61 23
22 FreeBSD 3 3.0 Oct. 16, 1998 Jan. 1, 1900 6 57 47 16
23 FreeBSD 2 2.0.5 Nov. 22, 1994 Jan. 1, 1900 6 51 41 10
24 FreeBSD 1 1.0 Oct. 1, 1993 Jan. 1, 1900 26 112 90 9
25 FreeBSD 0.4_1 0.4_1 Jan. 1, 1900 6 27 30 4
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
11 8.1
-
HIGH
Network
As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when reque… CWE-122
Heap-based Buffer Overflow
CVE-2026-42512 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-2 01:16
2026-04-30
Show GitHub Exploit DB Packet Storm
12 7.8
-
HIGH
Local
When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)'s file descriptor set size l… CWE-121
Stack-based Buffer Overflow
CVE-2026-39457 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-1 21:41
2026-04-30
Show GitHub Exploit DB Packet Storm
13 8.1
-
HIGH
Network
When processing the header of an incoming message, libnv failed to properly validate the message size. The lack of validation allows a malicious program to write outside the bounds of a heap allocat… CWE-122
CWE-130
Heap-based Buffer Overflow
 Improper Handling of Length Parameter Inconsistency
CVE-2026-35547 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-2 01:16
2026-04-30
Show GitHub Exploit DB Packet Storm
14 7.5
-
HIGH
Network
Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affec… CWE-674
CWE-791
 Uncontrolled Recursion
 Incomplete Filtering of Special Elements
CVE-2026-7164 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-1 21:46
2026-04-30
Show GitHub Exploit DB Packet Storm
15 7.8
-
HIGH
Local
An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by… CWE-783
 Operator Precedence Logic Error
CVE-2026-7270 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-1 21:47
2026-04-30
Show GitHub Exploit DB Packet Storm
16 8.1
-
HIGH
Network
The BOOTP file field is written to the lease file without escaping embedded double-quotes, allowing injection of arbitrary dhclient.conf directives. When the lease file is subsequently re-parsed by … CWE-149
 Improper Neutralization of Quoting Syntax
CVE-2026-42511 cpe:2.3:o:freebsd:freebsd:15.0:p6
cpe:2.3:o:freebsd:freebsd:15.0:p5
cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:…
2026-05-2 01:16
2026-04-30
Show GitHub Exploit DB Packet Storm
17 8.8
-
HIGH
Network
Each RPCSEC_GSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is … CWE-121
Stack-based Buffer Overflow
CVE-2026-4747 cpe:2.3:o:freebsd:freebsd:15.0:p4
cpe:2.3:o:freebsd:freebsd:15.0:p3
cpe:2.3:o:freebsd:freebsd:15.0:p2
cpe:2.3:…
2026-04-20 22:47
2026-03-26
Show GitHub Exploit DB Packet Storm
18 8.8
-
HIGH
Local
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace, without initializing it. Malicious software running in a guest VM that exposes virtio_scsi can exploi… CWE-909
 Missing Initialization of Resource
CVE-2024-8178 cpe:2.3:o:freebsd:freebsd:14.1:p3
cpe:2.3:o:freebsd:freebsd:14.1:p2
cpe:2.3:o:freebsd:freebsd:14.1:p1
cpe:2.3:…
13.0 13.3 2024-09-7 02:35
2024-09-5
Show GitHub Exploit DB Packet Storm
19 8.8
-
HIGH
Local
The function ctl_write_buffer incorrectly set a flag which resulted in a kernel Use-After-Free when a command finished processing. Malicious software running in a guest VM that exposes virtio_scsi c… CWE-416
 Use After Free
CVE-2024-45063 cpe:2.3:o:freebsd:freebsd:14.1:p3
cpe:2.3:o:freebsd:freebsd:14.1:p2
cpe:2.3:o:freebsd:freebsd:14.1:p1
cpe:2.3:…
13.0 13.3 2024-09-7 02:35
2024-09-5
Show GitHub Exploit DB Packet Storm
20 10.0
-
CRITICAL
Network
Concurrent removals of certain anonymous shared memory mappings by using the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM can lead to decreasing the reference count of the object representing the mapp… CWE-416
 Use After Free
CVE-2024-43102 cpe:2.3:o:freebsd:freebsd:14.1:p3
cpe:2.3:o:freebsd:freebsd:14.1:p2
cpe:2.3:o:freebsd:freebsd:14.1:p1
cpe:2.3:…
13.0 13.3 2024-11-21 18:35
2024-09-5
Show GitHub Exploit DB Packet Storm