| FreeBSD | Number Of NVD | 488 | CRITICAL | 29 | HIGH | 219 | MEDIUM | 185 | LOW | 55 |
| URL | https://www.freebsd.org/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years. We plan to release updates to the major versions every two years. Older versions will be supported until three months after a new minor version is released. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://www.freebsd.org/security/ | ||
| 2 | https://www.freebsd.org/releases/ | ||
| 3 | https://www.freebsd.org/security/unsupported.html |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 11 | FreeBSD 15 | 15.1 | June 16, 2026 | June 16, 2026 | March 31, 2027 | March 31, 2027 | 0 | 0 | 0 | 0 | |
| 12 | FreeBSD 13 | 13.2 | April 11, 2023 | April 13, 2021 | April 13, 2021 | 3 | 29 | 6 | 0 | ||
| 13 | FreeBSD 12 | 12.4 | Dec. 5, 2022 | Dec. 11, 2018 | June 30, 2024 | 18 | 39 | 22 | 2 | ||
| 14 | FreeBSD 11 | 11.4 | June 16, 2020 | Oct. 10, 2016 | Sept. 30, 2021 | 21 | 48 | 40 | 2 | ||
| 15 | FreeBSD 10 | 10.4 | Jan. 20, 2014 | Jan. 20, 2014 | Feb. 28, 2015 | 7 | 40 | 46 | 2 | ||
| 16 | FreeBSD 9 | 9.3 | July 16, 2014 | Jan. 10, 2012 | Dec. 31, 2016 | 5 | 38 | 33 | 6 | ||
| 17 | FreeBSD 8 | 8.4 | June 9, 2013 | Nov. 25, 2009 | Aug. 1, 2015 | 5 | 38 | 33 | 6 | ||
| 18 | FreeBSD 7 | 7.4 | Feb. 24, 2011 | Feb. 27, 2008 | Feb. 28, 2013 | 5 | 37 | 31 | 5 | ||
| 19 | FreeBSD 6 | 6.4 | Nov. 28, 2008 | Nov. 4, 2005 | Nov. 30, 2010 | 6 | 43 | 46 | 15 | ||
| 20 | FreeBSD 5 | 5.5 | May 25, 2006 | Nov. 6, 2004 | May 31, 2008 | 7 | 42 | 50 | 18 | ||
| 21 | FreeBSD 4 | 4.0 | March 14, 2000 | Jan. 31, 2007 | 8 | 67 | 61 | 23 | |||
| 22 | FreeBSD 3 | 3.0 | Oct. 16, 1998 | Jan. 1, 1900 | 6 | 57 | 47 | 16 | |||
| 23 | FreeBSD 2 | 2.0.5 | Nov. 22, 1994 | Jan. 1, 1900 | 6 | 51 | 41 | 10 | |||
| 24 | FreeBSD 1 | 1.0 | Oct. 1, 1993 | Jan. 1, 1900 | 26 | 112 | 90 | 9 | |||
| 25 | FreeBSD 0.4_1 | 0.4_1 | Jan. 1, 1900 | 6 | 27 | 30 | 4 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 11 |
8.1 - |
HIGH
Network |
As dhclient is building an environment to pass to dhclient-script, it may need to resize the array of string pointers. The code which expands the array incorrectly calculates its new size when reque… |
CWE-122
Heap-based Buffer Overflow |
CVE-2026-42512 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-2 01:16 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 12 |
7.8 - |
HIGH
Local |
When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)'s file descriptor set size l… |
CWE-121
Stack-based Buffer Overflow |
CVE-2026-39457 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-1 21:41 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 13 |
8.1 - |
HIGH
Network |
When processing the header of an incoming message, libnv failed to properly validate the message size. The lack of validation allows a malicious program to write outside the bounds of a heap allocat… |
CWE-122 CWE-130 Heap-based Buffer Overflow Improper Handling of Length Parameter Inconsistency |
CVE-2026-35547 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-2 01:16 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 14 |
7.5 - |
HIGH
Network |
Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affec… |
CWE-674 CWE-791 Uncontrolled Recursion Incomplete Filtering of Special Elements |
CVE-2026-7164 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-1 21:46 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 15 |
7.8 - |
HIGH
Local |
An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by… |
CWE-783
Operator Precedence Logic Error |
CVE-2026-7270 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-1 21:47 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 16 |
8.1 - |
HIGH
Network |
The BOOTP file field is written to the lease file without escaping embedded double-quotes, allowing injection of arbitrary dhclient.conf directives. When the lease file is subsequently re-parsed by … |
CWE-149
Improper Neutralization of Quoting Syntax |
CVE-2026-42511 |
cpe:2.3:o:freebsd:freebsd:15.0:p6 cpe:2.3:o:freebsd:freebsd:15.0:p5 cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:… |
2026-05-2 01:16 2026-04-30 |
Show | GitHub Exploit DB Packet Storm | ||||
| 17 |
8.8 - |
HIGH
Network |
Each RPCSEC_GSS data packet is validated by a routine which checks a signature in the packet. This routine copies a portion of the packet into a stack buffer, but fails to ensure that the buffer is … |
CWE-121
Stack-based Buffer Overflow |
CVE-2026-4747 |
cpe:2.3:o:freebsd:freebsd:15.0:p4 cpe:2.3:o:freebsd:freebsd:15.0:p3 cpe:2.3:o:freebsd:freebsd:15.0:p2 cpe:2.3:… |
2026-04-20 22:47 2026-03-26 |
Show | GitHub Exploit DB Packet Storm | ||||
| 18 |
8.8 - |
HIGH
Local |
The ctl_write_buffer and ctl_read_buffer functions allocated memory to be returned to userspace, without initializing it. Malicious software running in a guest VM that exposes virtio_scsi can exploi… |
CWE-909
Missing Initialization of Resource |
CVE-2024-8178 |
cpe:2.3:o:freebsd:freebsd:14.1:p3 cpe:2.3:o:freebsd:freebsd:14.1:p2 cpe:2.3:o:freebsd:freebsd:14.1:p1 cpe:2.3:… |
13.0 | 13.3 |
2024-09-7 02:35 2024-09-5 |
Show | GitHub Exploit DB Packet Storm | ||
| 19 |
8.8 - |
HIGH
Local |
The function ctl_write_buffer incorrectly set a flag which resulted in a kernel Use-After-Free when a command finished processing. Malicious software running in a guest VM that exposes virtio_scsi c… |
CWE-416
Use After Free |
CVE-2024-45063 |
cpe:2.3:o:freebsd:freebsd:14.1:p3 cpe:2.3:o:freebsd:freebsd:14.1:p2 cpe:2.3:o:freebsd:freebsd:14.1:p1 cpe:2.3:… |
13.0 | 13.3 |
2024-09-7 02:35 2024-09-5 |
Show | GitHub Exploit DB Packet Storm | ||
| 20 |
10.0 - |
CRITICAL
Network |
Concurrent removals of certain anonymous shared memory mappings by using the UMTX_SHM_DESTROY sub-request of UMTX_OP_SHM can lead to decreasing the reference count of the object representing the mapp… |
CWE-416
Use After Free |
CVE-2024-43102 |
cpe:2.3:o:freebsd:freebsd:14.1:p3 cpe:2.3:o:freebsd:freebsd:14.1:p2 cpe:2.3:o:freebsd:freebsd:14.1:p1 cpe:2.3:… |
13.0 | 13.3 |
2024-11-21 18:35 2024-09-5 |
Show | GitHub Exploit DB Packet Storm |