|
51
|
7.5
6.2
|
HIGH
Local
|
In FreeBSD 13.0-STABLE before n245118, 12.2-STABLE before r369552, 11.4-STABLE before r369560, 13.0-RC5 before p1, 12.2-RELEASE before p6, and 11.4-RELEASE before p9, a superuser inside a FreeBSD jai…
|
CWE-362
Race Condition
|
CVE-2020-25584
|
cpe:2.3:o:freebsd:freebsd:13.0:rc5 cpe:2.3:o:freebsd:freebsd:13.0:rc4 cpe:2.3:o:freebsd:freebsd:13.0:rc3 cpe:2…
|
12.0
|
|
|
11.4 12.2
|
2024-11-21 14:18
2021-04-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
52
|
9.8
10.0
|
CRITICAL
Network
|
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 when processing a DNSSL option, rtsold(8) decodes domain …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-25583
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p9 cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:18
2021-03-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
53
|
9.8
10.0
|
CRITICAL
Network
|
In FreeBSD 12.2-STABLE before r368250, 11.4-STABLE before r368253, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 rtsold(8) does not verify that the RDNSS option does not …
|
CWE-120
Classic Buffer Overflow
|
CVE-2020-25577
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p9 cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:18
2021-03-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
54
|
8.8
9.0
|
HIGH
Network
|
In FreeBSD 12.2-STABLE before r365772, 11.4-STABLE before r365773, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a ftpd(8) bug in the implementation of the file system s…
|
NVD-CWE-Other
|
CVE-2020-7468
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p9 cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
55
|
7.6
7.2
|
HIGH
Physics
|
In FreeBSD 12.2-STABLE before r365767, 11.4-STABLE before r365769, 12.1-RELEASE before p10, 11.4-RELEASE before p4 and 11.3-RELEASE before p14 a number of AMD virtualization instructions operate on h…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7467
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p9 cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
56
|
5.5
4.9
|
MEDIUM
Local
|
In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free…
|
CWE-416
Use After Free
|
CVE-2020-7463
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o:freebsd:freebsd:12.1:p7 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
57
|
5.5
4.9
|
MEDIUM
Local
|
In 11.4-PRERELEASE before r360733 and 11.3-RELEASE before p13, improper mbuf handling in the kernel causes a use-after-free bug by sending IPv6 Hop-by-Hop options over the loopback interface. The use…
|
CWE-416
Use After Free
|
CVE-2020-7462
|
cpe:2.3:o:freebsd:freebsd:11.4:- cpe:2.3:o:freebsd:freebsd:11.3:p9 cpe:2.3:o:freebsd:freebsd:11.3:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
58
|
5.3
5.0
|
MEDIUM
Network
|
In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12.1-RELEASE before p10, 11.4-RELEASE before p4, and 11.3-RELEASE before p14, a programming error in the ure(4) device driver caused…
|
CWE-74
Injection
|
CVE-2020-7464
|
cpe:2.3:o:freebsd:freebsd:12.2:- cpe:2.3:o:freebsd:freebsd:12.1:p9 cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
59
|
7.3
7.5
|
HIGH
Network
|
In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, dhclient(8) fails to handle certain malformed input rel…
|
CWE-787
Out-of-bounds Write
|
CVE-2020-7461
|
cpe:2.3:o:freebsd:freebsd:12.1:p8 cpe:2.3:o:freebsd:freebsd:12.1:p7 cpe:2.3:o:freebsd:freebsd:12.1:p6 cpe:2.3:…
|
|
|
|
|
2024-11-21 14:37
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
60
|
8.7
8.5
|
HIGH
Network
|
In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec(8) or killall(1), calls jail_attach(2) to enter a ja…
|
CWE-362
Race Condition
|
CVE-2020-25582
|
cpe:2.3:o:freebsd:freebsd:12.2:p3 cpe:2.3:o:freebsd:freebsd:12.2:p2 cpe:2.3:o:freebsd:freebsd:12.2:p1 cpe:2.3:…
|
|
|
|
|
2024-11-21 14:18
2021-03-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|