Freebsd : Security Vulnerabilities (CVSS score between 8 and 8.99)
# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2020-25582 |
362 |
|
|
2021-03-26 |
2022-07-12 |
8.5 |
None |
Remote |
Low |
??? |
Complete |
Complete |
None |
In FreeBSD 12.2-STABLE before r369334, 11.4-STABLE before r369335, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 when a process, such as jexec(8) or killall(1), calls jail_attach(2) to enter a jail, the jailed root can attach to it using ptrace(2) before the current working directory is changed. |
2 |
CVE-2020-25581 |
362 |
|
|
2021-03-26 |
2021-06-03 |
8.5 |
None |
Remote |
Medium |
??? |
Complete |
Complete |
Complete |
In FreeBSD 12.2-STABLE before r369312, 11.4-STABLE before r369313, 12.2-RELEASE before p4 and 11.4-RELEASE before p8 due to a race condition in the jail_remove(2) implementation, it may fail to kill some of the processes. |
3 |
CVE-2019-5604 |
125 |
|
|
2019-07-26 |
2019-08-14 |
8.5 |
None |
Remote |
Low |
??? |
Complete |
None |
Complete |
In FreeBSD 12.0-STABLE before r350246, 12.0-RELEASE before 12.0-RELEASE-p8, 11.3-STABLE before r350247, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, the emulated XHCI device included with the bhyve hypervisor did not properly validate data provided by the guest, allowing an out-of-bounds read. This provides a malicious guest the possibility to crash the system or access system memory. |
Total number of vulnerabilities :
3
Page :
1
(This Page)