| FreeBSD | Number Of NVD | 488 | CRITICAL | 29 | HIGH | 219 | MEDIUM | 185 | LOW | 55 |
| URL | https://www.freebsd.org/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years. We plan to release updates to the major versions every two years. Older versions will be supported until three months after a new minor version is released. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://www.freebsd.org/security/ | ||
| 2 | https://www.freebsd.org/releases/ | ||
| 3 | https://www.freebsd.org/security/unsupported.html |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 401 | FreeBSD 15 | 15.1 | June 16, 2026 | June 16, 2026 | March 31, 2027 | March 31, 2027 | 0 | 0 | 0 | 0 | |
| 402 | FreeBSD 13 | 13.2 | April 11, 2023 | April 13, 2021 | April 13, 2021 | 3 | 29 | 6 | 0 | ||
| 403 | FreeBSD 12 | 12.4 | Dec. 5, 2022 | Dec. 11, 2018 | June 30, 2024 | 18 | 39 | 22 | 2 | ||
| 404 | FreeBSD 11 | 11.4 | June 16, 2020 | Oct. 10, 2016 | Sept. 30, 2021 | 21 | 48 | 40 | 2 | ||
| 405 | FreeBSD 10 | 10.4 | Jan. 20, 2014 | Jan. 20, 2014 | Feb. 28, 2015 | 7 | 40 | 46 | 2 | ||
| 406 | FreeBSD 9 | 9.3 | July 16, 2014 | Jan. 10, 2012 | Dec. 31, 2016 | 5 | 38 | 33 | 6 | ||
| 407 | FreeBSD 8 | 8.4 | June 9, 2013 | Nov. 25, 2009 | Aug. 1, 2015 | 5 | 38 | 33 | 6 | ||
| 408 | FreeBSD 7 | 7.4 | Feb. 24, 2011 | Feb. 27, 2008 | Feb. 28, 2013 | 5 | 37 | 31 | 5 | ||
| 409 | FreeBSD 6 | 6.4 | Nov. 28, 2008 | Nov. 4, 2005 | Nov. 30, 2010 | 6 | 43 | 46 | 15 | ||
| 410 | FreeBSD 5 | 5.5 | May 25, 2006 | Nov. 6, 2004 | May 31, 2008 | 7 | 42 | 50 | 18 | ||
| 411 | FreeBSD 4 | 4.0 | March 14, 2000 | Jan. 31, 2007 | 8 | 67 | 61 | 23 | |||
| 412 | FreeBSD 3 | 3.0 | Oct. 16, 1998 | Jan. 1, 1900 | 6 | 57 | 47 | 16 | |||
| 413 | FreeBSD 2 | 2.0.5 | Nov. 22, 1994 | Jan. 1, 1900 | 6 | 51 | 41 | 10 | |||
| 414 | FreeBSD 1 | 1.0 | Oct. 1, 1993 | Jan. 1, 1900 | 26 | 112 | 90 | 9 | |||
| 415 | FreeBSD 0.4_1 | 0.4_1 | Jan. 1, 1900 | 6 | 27 | 30 | 4 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 401 |
- 7.5 |
HIGH | FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP c… |
NVD-CWE-Other
|
CVE-2000-0916 |
cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:freebsd:freebsd:4.1.1:* cpe:2.3:o:freebsd:freebsd:4.0:* cpe:2.3:o:fr… |
2008-09-6 05:22 2000-12-19 |
Show | GitHub Exploit DB Packet Storm | ||||
| 402 |
- 7.2 |
HIGH | Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd. |
NVD-CWE-Other
|
CVE-2000-0993 |
cpe:2.3:o:freebsd:freebsd:4.0:* cpe:2.3:o:freebsd:freebsd:3.5:* cpe:2.3:o:freebsd:freebsd:3.4:* cpe:2.3:o:free… |
2017-10-10 10:29 2000-12-19 |
Show | GitHub Exploit DB Packet Storm | ||||
| 403 |
- 7.2 |
HIGH | Buffer overflow in ncurses library allows local users to execute arbitrary commands via long environmental information such as TERM or TERMINFO_DIRS. |
NVD-CWE-Other
|
CVE-2000-0963 |
cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:freebsd:freebsd:4.1.1:stable cpe:2.3:o:freebsd:freebsd:4.1.1:* cpe:2… |
2023-03-4 05:03 2000-12-19 |
Show | GitHub Exploit DB Packet Storm | ||||
| 404 |
- 7.2 |
HIGH | Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function. |
NVD-CWE-Other
|
CVE-2000-0998 |
cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:freebsd:freebsd:4.1.1:* cpe:2.3:o:freebsd:freebsd:4.0:alpha cpe:2.3:… |
2008-09-6 05:22 2000-12-11 |
Show | GitHub Exploit DB Packet Storm | ||||
| 405 |
- 7.2 |
HIGH | Buffer overflow in catopen() function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to gain root privileges via a long environmental variable. |
NVD-CWE-Other
|
CVE-2000-1011 |
cpe:2.3:o:freebsd:freebsd:5.0:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free… |
2017-10-10 10:29 2000-12-11 |
Show | GitHub Exploit DB Packet Storm | ||||
| 406 |
- 7.2 |
HIGH | The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable. |
NVD-CWE-Other
|
CVE-2000-1012 |
cpe:2.3:o:freebsd:freebsd:5.0:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free… |
2008-09-6 05:22 2000-12-11 |
Show | GitHub Exploit DB Packet Storm | ||||
| 407 |
- 7.2 |
HIGH | The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable. |
NVD-CWE-Other
|
CVE-2000-1013 |
cpe:2.3:o:freebsd:freebsd:5.0:* cpe:2.3:o:freebsd:freebsd:4.2:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:free… |
2008-09-6 05:22 2000-12-11 |
Show | GitHub Exploit DB Packet Storm | ||||
| 408 |
- 5.0 |
MEDIUM | The getnameinfo function in FreeBSD 4.1.1 and earlier, and possibly other operating systems, allows a remote attacker to cause a denial of service via a long DNS hostname. |
NVD-CWE-Other
|
CVE-2000-1066 |
cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:freebsd:freebsd:4.1.1:release cpe:2.3:o:freebsd:freebsd:4.1.1:* cpe:… |
2017-07-11 10:29 2000-12-11 |
Show | GitHub Exploit DB Packet Storm | ||||
| 409 |
- 7.2 |
HIGH | Multiple buffer overflows in eject on FreeBSD and possibly other OSes allows local users to gain root privileges. |
NVD-CWE-Other
|
CVE-2000-0852 |
cpe:2.3:o:freebsd:freebsd:5.0:alpha cpe:2.3:o:freebsd:freebsd:5.0:* cpe:2.3:o:freebsd:freebsd:4.0:* cpe:2.3:o:… |
2017-10-10 10:29 2000-11-14 |
Show | GitHub Exploit DB Packet Storm | ||||
| 410 |
- 2.1 |
LOW | FreeBSD 5.x, 4.x, and 3.x allows local users to cause a denial of service by executing a program with a malformed ELF image header. |
NVD-CWE-Other
|
CVE-2000-0729 |
cpe:2.3:o:freebsd:freebsd:5.0:alpha cpe:2.3:o:freebsd:freebsd:5.0:* cpe:2.3:o:freebsd:freebsd:4.1:* cpe:2.3:o:… |
2017-10-10 10:29 2000-10-20 |
Show | GitHub Exploit DB Packet Storm |