Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
FreeBSD Number Of NVD 488 CRITICAL 29 HIGH 219 MEDIUM 185 LOW 55
URL https://www.freebsd.org/
Explanation Starting with FreeBSD 11, we are switching to a model of supporting major versions for at least 5 years.
We plan to release updates to the major versions every two years.
Older versions will be supported until three months after a new minor version is released.
Tag
  • BSD

Add Information URL
No Type Name URL
1 https://www.freebsd.org/security/
2 https://www.freebsd.org/releases/
3 https://www.freebsd.org/security/unsupported.html

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
81 FreeBSD 15 15.1 June 16, 2026 June 16, 2026 March 31, 2027 March 31, 2027 0 0 0 0
82 FreeBSD 13 13.2 April 11, 2023 April 13, 2021 April 13, 2021 3 29 6 0
83 FreeBSD 12 12.4 Dec. 5, 2022 Dec. 11, 2018 June 30, 2024 18 39 22 2
84 FreeBSD 11 11.4 June 16, 2020 Oct. 10, 2016 Sept. 30, 2021 21 48 40 2
85 FreeBSD 10 10.4 Jan. 20, 2014 Jan. 20, 2014 Feb. 28, 2015 7 40 46 2
86 FreeBSD 9 9.3 July 16, 2014 Jan. 10, 2012 Dec. 31, 2016 5 38 33 6
87 FreeBSD 8 8.4 June 9, 2013 Nov. 25, 2009 Aug. 1, 2015 5 38 33 6
88 FreeBSD 7 7.4 Feb. 24, 2011 Feb. 27, 2008 Feb. 28, 2013 5 37 31 5
89 FreeBSD 6 6.4 Nov. 28, 2008 Nov. 4, 2005 Nov. 30, 2010 6 43 46 15
90 FreeBSD 5 5.5 May 25, 2006 Nov. 6, 2004 May 31, 2008 7 42 50 18
91 FreeBSD 4 4.0 March 14, 2000 Jan. 31, 2007 8 67 61 23
92 FreeBSD 3 3.0 Oct. 16, 1998 Jan. 1, 1900 6 57 47 16
93 FreeBSD 2 2.0.5 Nov. 22, 1994 Jan. 1, 1900 6 51 41 10
94 FreeBSD 1 1.0 Oct. 1, 1993 Jan. 1, 1900 26 112 90 9
95 FreeBSD 0.4_1 0.4_1 Jan. 1, 1900 6 27 30 4
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
81 6.0
3.3
MEDIUM
Local
In FreeBSD 12.1-STABLE before r359021, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r359020, and 11.3-RELEASE before 11.3-RELEASE-p7, a missing null termination check in the jail_set confi… CWE-754
 Improper Check for Unusual or Exceptional Conditions
CVE-2020-7453 cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:o:freebsd:freebsd:12.1:-
cpe:2.3:o…
2024-11-21 14:37
2020-04-29
Show GitHub Exploit DB Packet Storm
82 9.1
9.0
CRITICAL
Network
In FreeBSD 12.1-STABLE before r357490, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r357489, and 11.3-RELEASE before 11.3-RELEASE-p7, incorrect use of a user-controlled pointer in the epai… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2020-7452 cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:o:freebsd:freebsd:12.1:-
cpe:2.3:o…
2024-11-21 14:37
2020-04-29
Show GitHub Exploit DB Packet Storm
83 9.8
7.5
CRITICAL
Network
In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in access… CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error') 
 Improper Input Validation 
CVE-2019-5614 cpe:2.3:o:freebsd:freebsd:12.1:p3
cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:…
2024-11-21 13:45
2020-04-29
Show GitHub Exploit DB Packet Storm
84 9.8
7.5
CRITICAL
Network
In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in memory… CWE-20
CWE-416
 Improper Input Validation 
 Use After Free
CVE-2019-15874 cpe:2.3:o:freebsd:freebsd:12.1:p3
cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:…
2024-11-21 13:29
2020-04-29
Show GitHub Exploit DB Packet Storm
85 5.3
5.0
MEDIUM
Network
In FreeBSD 12.1-STABLE before r358739, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r358740, and 11.3-RELEASE before 11.3-RELEASE-p7, a TCP SYN-ACK or challenge TCP-ACK segment over IPv6 t… CWE-908
 Use of Uninitialized Resource
CVE-2020-7451 cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:o:freebsd:freebsd:12.1:-
cpe:2.3:o…
2024-11-21 14:37
2020-04-29
Show GitHub Exploit DB Packet Storm
86 5.5
2.1
MEDIUM
Local
In FreeBSD 12.1-STABLE before r356606 and 12.1-RELEASE before 12.1-RELEASE-p3, driver specific ioctl command handlers in the ixl network driver failed to check whether the caller has sufficient privi… CWE-862
 Missing Authorization
CVE-2019-15877 cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:o:freebsd:freebsd:12.1:-
2024-11-21 13:29
2020-04-29
Show GitHub Exploit DB Packet Storm
87 5.5
2.1
MEDIUM
Local
In FreeBSD 12.1-STABLE before r356089, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r356090, and 11.3-RELEASE before 11.3-RELEASE-p7, driver specific ioctl command handlers in the oce netw… CWE-862
 Missing Authorization
CVE-2019-15876 cpe:2.3:o:freebsd:freebsd:12.1:p2
cpe:2.3:o:freebsd:freebsd:12.1:p1
cpe:2.3:o:freebsd:freebsd:12.1:-
cpe:2.3:o…
2024-11-21 13:29
2020-04-29
Show GitHub Exploit DB Packet Storm
88 7.5
5.0
HIGH
Network
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signat… CWE-476
 NULL Pointer Dereference
CVE-2020-1967 cpe:2.3:o:freebsd:freebsd:12.1:- 2024-11-21 14:11
2020-04-21
Show GitHub Exploit DB Packet Storm
89 7.8
4.6
HIGH
Local
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, mishandles font loading by a guest through a grub2.cfg file, leading to a buffer overflow. CWE-120
Classic Buffer Overflow
CVE-2020-10566 cpe:2.3:o:freebsd:freebsd:*:* 525916_2020-02-12 2024-11-21 13:55
2020-03-14
Show GitHub Exploit DB Packet Storm
90 7.8
7.2
HIGH
Local
grub2-bhyve, as used in FreeBSD bhyve before revision 525916 2020-02-12, does not validate the address provided as part of a memrw command (read_* or write_*) by a guest through a grub2.cfg file. Thi… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2020-10565 cpe:2.3:o:freebsd:freebsd:*:* 525916_2020-02-12 2024-11-21 13:55
2020-03-14
Show GitHub Exploit DB Packet Storm