Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
FreeBSD Number Of NVD 488 CRITICAL 29 HIGH 219 MEDIUM 185 LOW 55
URL https://www.freebsd.org/
Explanation Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years.
We plan to release updates to the major versions every two years.
Older versions will be supported until three months after a new minor version is released.
Tag
  • BSD

Add Information URL
No Type Name URL
1 https://www.freebsd.org/security/
2 https://www.freebsd.org/releases/
3 https://www.freebsd.org/security/unsupported.html

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
371 FreeBSD 15 15.1 June 16, 2026 June 16, 2026 March 31, 2027 March 31, 2027 0 0 0 0
372 FreeBSD 13 13.2 April 11, 2023 April 13, 2021 April 13, 2021 3 29 6 0
373 FreeBSD 12 12.4 Dec. 5, 2022 Dec. 11, 2018 June 30, 2024 18 39 22 2
374 FreeBSD 11 11.4 June 16, 2020 Oct. 10, 2016 Sept. 30, 2021 21 48 40 2
375 FreeBSD 10 10.4 Jan. 20, 2014 Jan. 20, 2014 Feb. 28, 2015 7 40 46 2
376 FreeBSD 9 9.3 July 16, 2014 Jan. 10, 2012 Dec. 31, 2016 5 38 33 6
377 FreeBSD 8 8.4 June 9, 2013 Nov. 25, 2009 Aug. 1, 2015 5 38 33 6
378 FreeBSD 7 7.4 Feb. 24, 2011 Feb. 27, 2008 Feb. 28, 2013 5 37 31 5
379 FreeBSD 6 6.4 Nov. 28, 2008 Nov. 4, 2005 Nov. 30, 2010 6 43 46 15
380 FreeBSD 5 5.5 May 25, 2006 Nov. 6, 2004 May 31, 2008 7 42 50 18
381 FreeBSD 4 4.0 March 14, 2000 Jan. 31, 2007 8 67 61 23
382 FreeBSD 3 3.0 Oct. 16, 1998 Jan. 1, 1900 6 57 47 16
383 FreeBSD 2 2.0.5 Nov. 22, 1994 Jan. 1, 1900 6 51 41 10
384 FreeBSD 1 1.0 Oct. 1, 1993 Jan. 1, 1900 26 112 90 9
385 FreeBSD 0.4_1 0.4_1 Jan. 1, 1900 6 27 30 4
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
371 -
7.2
HIGH rmuser utility in FreeBSD 4.2 and 4.3 creates a copy of the master.passwd file with world-readable permissions while updating the original file, which could allow local users to gain privileges by re… NVD-CWE-Other
CVE-2001-1017 cpe:2.3:o:freebsd:freebsd:4.3:*
cpe:2.3:o:freebsd:freebsd:4.2:*
2017-10-10 10:29
2001-09-4
Show GitHub Exploit DB Packet Storm
372 -
10.0
HIGH ipfw in FreeBSD does not properly handle the use of "me" in its rules when point to point interfaces are used, which causes ipfw to allow connections from arbitrary remote hosts. NVD-CWE-Other
CVE-2001-0969 cpe:2.3:o:freebsd:freebsd:4.3:* 2017-10-10 10:29
2001-08-31
Show GitHub Exploit DB Packet Storm
373 9.8
7.5
CRITICAL
Network
TCP Wrappers (tcp_wrappers) in FreeBSD 4.1.1 through 4.3 with the PARANOID ACL option enabled does not properly check the result of a reverse DNS lookup, which could allow remote attackers to bypass … CWE-863
 Incorrect Authorization
CVE-2001-1155 cpe:2.3:o:freebsd:freebsd:*:* 4.1.1 4.3 2024-02-17 01:51
2001-08-23
Show GitHub Exploit DB Packet Storm
374 -
5.0
MEDIUM linprocfs on FreeBSD 4.3 and earlier does not properly restrict access to kernel memory, which allows one process with debugging rights on a privileged process to read restricted memory from that pro… NVD-CWE-Other
CVE-2001-1166 cpe:2.3:o:freebsd:freebsd:4.3:*
cpe:2.3:o:freebsd:freebsd:4.2:*
cpe:2.3:o:freebsd:freebsd:4.1:*
cpe:2.3:o:free…
2008-09-6 05:25
2001-08-21
Show GitHub Exploit DB Packet Storm
375 -
6.2
MEDIUM fts routines in FreeBSD 4.3 and earlier, NetBSD before 1.5.2, and OpenBSD 2.9 and earlier can be forced to change (chdir) into a different directory than intended when the directory above the current… NVD-CWE-Other
CVE-2001-1145 cpe:2.3:o:freebsd:freebsd:4.3:* 2008-09-11 04:09
2001-08-17
Show GitHub Exploit DB Packet Storm
376 -
10.0
HIGH Buffer overflow in BSD-based telnetd telnet daemon on various operating systems allows remote attackers to execute arbitrary commands via a set of options including AYT (Are You There), which is not … CWE-120
Classic Buffer Overflow
CVE-2001-0554 cpe:2.3:o:freebsd:freebsd:4.3:*
cpe:2.3:o:freebsd:freebsd:4.2:*
cpe:2.3:o:freebsd:freebsd:4.1:*
cpe:2.3:o:free…
2022-01-21 23:48
2001-08-14
Show GitHub Exploit DB Packet Storm
377 -
7.2
HIGH FreeBSD 4.3 does not properly clear shared signal handlers when executing a process, which allows local users to gain privileges by calling rfork with a shared signal handler, having the child proces… NVD-CWE-Other
CVE-2001-1180 cpe:2.3:o:freebsd:freebsd:4.3:*
cpe:2.3:o:freebsd:freebsd:4.2:*
cpe:2.3:o:freebsd:freebsd:4.1:*
cpe:2.3:o:free…
2017-10-10 10:30
2001-07-10
Show GitHub Exploit DB Packet Storm
378 -
5.0
MEDIUM Multiple TCP implementations could allow remote attackers to cause a denial of service (bandwidth and CPU exhaustion) by setting the maximum segment size (MSS) to a very small number and requesting l… NVD-CWE-Other
CVE-2001-1244 cpe:2.3:o:freebsd:freebsd:4.3:* 2018-10-31 01:26
2001-07-7
Show GitHub Exploit DB Packet Storm
379 -
7.2
HIGH BubbleMon 1.31 does not properly drop group privileges before executing programs, which allows local users to execute arbitrary commands with the kmem group id. NVD-CWE-Other
CVE-2001-0424 cpe:2.3:o:freebsd:freebsd:6.2:stable 2016-10-18 11:11
2001-07-2
Show GitHub Exploit DB Packet Storm
380 -
7.5
HIGH licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. NVD-CWE-Other
CVE-2001-0439 cpe:2.3:o:freebsd:freebsd:4.2:*
cpe:2.3:o:freebsd:freebsd:3.5.1:*
2017-10-10 10:29
2001-07-2
Show GitHub Exploit DB Packet Storm