Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
FreeBSD Number Of NVD 488 CRITICAL 29 HIGH 219 MEDIUM 185 LOW 55
URL https://www.freebsd.org/
Explanation Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years.
We plan to release updates to the major versions every two years.
Older versions will be supported until three months after a new minor version is released.
Tag
  • BSD

Add Information URL
No Type Name URL
1 https://www.freebsd.org/security/
2 https://www.freebsd.org/releases/
3 https://www.freebsd.org/security/unsupported.html

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
361 FreeBSD 15 15.1 June 16, 2026 June 16, 2026 March 31, 2027 March 31, 2027 0 0 0 0
362 FreeBSD 13 13.2 April 11, 2023 April 13, 2021 April 13, 2021 3 29 6 0
363 FreeBSD 12 12.4 Dec. 5, 2022 Dec. 11, 2018 June 30, 2024 18 39 22 2
364 FreeBSD 11 11.4 June 16, 2020 Oct. 10, 2016 Sept. 30, 2021 21 48 40 2
365 FreeBSD 10 10.4 Jan. 20, 2014 Jan. 20, 2014 Feb. 28, 2015 7 40 46 2
366 FreeBSD 9 9.3 July 16, 2014 Jan. 10, 2012 Dec. 31, 2016 5 38 33 6
367 FreeBSD 8 8.4 June 9, 2013 Nov. 25, 2009 Aug. 1, 2015 5 38 33 6
368 FreeBSD 7 7.4 Feb. 24, 2011 Feb. 27, 2008 Feb. 28, 2013 5 37 31 5
369 FreeBSD 6 6.4 Nov. 28, 2008 Nov. 4, 2005 Nov. 30, 2010 6 43 46 15
370 FreeBSD 5 5.5 May 25, 2006 Nov. 6, 2004 May 31, 2008 7 42 50 18
371 FreeBSD 4 4.0 March 14, 2000 Jan. 31, 2007 8 67 61 23
372 FreeBSD 3 3.0 Oct. 16, 1998 Jan. 1, 1900 6 57 47 16
373 FreeBSD 2 2.0.5 Nov. 22, 1994 Jan. 1, 1900 6 51 41 10
374 FreeBSD 1 1.0 Oct. 1, 1993 Jan. 1, 1900 26 112 90 9
375 FreeBSD 0.4_1 0.4_1 Jan. 1, 1900 6 27 30 4
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
361 -
5.0
MEDIUM Memory leak in FreeBSD 4.5 and earlier allows remote attackers to cause a denial of service (memory exhaustion) via ICMP echo packets that trigger a bug in ip_output() in which the reference count fo… CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2002-0574 cpe:2.3:o:freebsd:freebsd:*:* 4.5 2024-01-27 03:55
2002-07-3
Show GitHub Exploit DB Packet Storm
362 -
5.0
MEDIUM The TCP implementation in various BSD operating systems (tcp_input.c) does not properly block connections to broadcast addresses, which could allow remote attackers to bypass intended filters via pac… NVD-CWE-Other
CVE-2002-0381 cpe:2.3:o:freebsd:freebsd:*:* 4.5 2008-09-6 05:27
2002-06-25
Show GitHub Exploit DB Packet Storm
363 -
7.2
HIGH Buffer overflow in ncurses 5.0, and the ncurses4 compatibility package as used in Red Hat Linux, allows local users to gain privileges, related to "routines for moving the physical cursor and scrolli… CWE-120
Classic Buffer Overflow
CVE-2002-0062 cpe:2.3:o:freebsd:freebsd:5.0:*
cpe:2.3:o:freebsd:freebsd:4.1:*
cpe:2.3:o:freebsd:freebsd:4.1.1:*
cpe:2.3:o:fr…
2023-03-4 03:58
2002-03-8
Show GitHub Exploit DB Packet Storm
364 -
7.2
HIGH Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. NVD-CWE-Other
CVE-2002-0004 cpe:2.3:o:freebsd:freebsd:4.4:*
cpe:2.3:o:freebsd:freebsd:4.3:*
cpe:2.3:o:freebsd:freebsd:4.2:*
cpe:2.3:o:free…
2017-10-10 10:30
2002-02-27
Show GitHub Exploit DB Packet Storm
365 -
6.2
MEDIUM Some AIO operations in FreeBSD 4.4 may be delayed until after a call to execve, which could allow a local user to overwrite memory of the new process and gain privileges. NVD-CWE-Other
CVE-2001-1185 cpe:2.3:o:freebsd:freebsd:4.4:* 2008-09-6 05:25
2001-12-10
Show GitHub Exploit DB Packet Storm
366 -
5.0
MEDIUM SGI IRIX 6.5 through 6.5.12f and possibly earlier versions, and FreeBSD 3.0, allows remote attackers to cause a denial of service via a malformed IGMP multicast packet with a small response delay. NVD-CWE-Other
CVE-2001-0796 cpe:2.3:o:freebsd:freebsd:3.0:* 2017-10-10 10:29
2001-12-6
Show GitHub Exploit DB Packet Storm
367 -
7.5
HIGH Buffer overflow in BSD line printer daemon (in.lpd or lpd) in various BSD-based operating systems allows remote attackers to execute arbitrary code via an incomplete print job followed by a request t… NVD-CWE-Other
CVE-2001-0670 cpe:2.3:o:freebsd:freebsd:*:* 4.3 2017-10-10 10:29
2001-10-3
Show GitHub Exploit DB Packet Storm
368 -
7.2
HIGH Format string vulnerability in Hylafax on FreeBSD allows local users to execute arbitrary code via format specifiers in the -h hostname argument for (1) faxrm or (2) faxalter. NVD-CWE-Other
CVE-2001-1034 cpe:2.3:o:freebsd:freebsd:4.4:* 2017-12-19 11:29
2001-09-23
Show GitHub Exploit DB Packet Storm
369 -
5.0
MEDIUM NetBSD 1.5 and earlier and FreeBSD 4.3 and earlier allows a remote attacker to cause a denial of service by sending a large number of IP fragments to the machine, exhausting the mbuf pool. NVD-CWE-Other
CVE-2001-0710 cpe:2.3:o:freebsd:freebsd:*:* 4.3 2017-10-10 10:29
2001-09-20
Show GitHub Exploit DB Packet Storm
370 -
2.1
LOW libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabiliti… NVD-CWE-Other
CVE-2001-1029 cpe:2.3:o:freebsd:freebsd:*:* 4.4 2017-10-10 10:29
2001-09-20
Show GitHub Exploit DB Packet Storm