FreeBSD Local Security Checks Family for Nessus

ID	Name	Severity
141293	FreeBSD : zeek -- Vulnerability due to memory leak (769a4f60-9056-4c27-89a1-1758a59a21f8)	high
141284	FreeBSD : chromium -- multiple vulnerabilities (64988354-0889-11eb-a01b-e09467587c17)	high
141191	FreeBSD : libexif -- multiple vulnerabilities (cff0b2e2-0716-11eb-9e5d-08002728f74c)	high
141149	FreeBSD : kdeconnect -- packet manipulation can be exploited in a Denial of Service attack (c71ed065-0600-11eb-8758-e0d55e2a8bf9)	medium
141148	FreeBSD : Gitlab -- multiple vulnerabilities (a3495e61-047f-11eb-86ea-001b217b3468)	high
141147	FreeBSD : upnp -- denial of service (crash) (a23871f6-059b-11eb-8758-e0d55e2a8bf9)	high
141103	FreeBSD : tt-rss -- multiple vulnerabilities (2eec1e85-faf3-11ea-8ac0-4437e6ad11c4)	critical
140938	FreeBSD : powerdns -- Leaking uninitialised memory through crafted zone records (b371db92-fe34-11ea-b90e-6805ca2fa271)	medium
140937	FreeBSD : Apache Ant leaks sensitive information via the java.io.tmpdir (6d5f1b0b-b865-48d5-935b-3fb6ebb425fc)	medium
140739	FreeBSD : libxml -- multiple vulnerabilities (f5abafc0-fcf6-11ea-8758-e0d55e2a8bf9)	medium
140738	FreeBSD : chromium -- multiple vulnerabilities (e68d3db1-fd04-11ea-a67f-e09467587c17)	critical
140725	FreeBSD : py-matrix-synapse -- malformed events may prevent users from joining federated rooms (2327234d-fc4b-11ea-adef-641c67a117d8)	high
140680	FreeBSD : webkit2-gtk3 -- multible vulnerabilities (efd03116-c2a9-11ea-82bc-b42e99a1b9c3)	critical
140679	FreeBSD : Nextcloud -- Password share by mail not hashed (eeec4e6f-fa71-11ea-9bb7-d4c9ef517024)	high
140678	FreeBSD : Python -- multiple vulnerabilities (2cb21232-fb32-11ea-a929-a4bf014bf5f7)	high
140677	FreeBSD : samba -- Unauthenticated domain takeover via netlogon (24ace516-fad7-11ea-8d8c-005056a311d1)	medium
140630	FreeBSD : FreeBSD -- bhyve SVM guest escape (e73c688b-f7e6-11ea-88f8-901b0ef719ab)	high
140629	FreeBSD : FreeBSD -- ure device driver susceptible to packet-in-packet attack (bb53af7b-f7e4-11ea-88f8-901b0ef719ab)	medium
140628	FreeBSD : FreeBSD -- ftpd privilege escalation via ftpchroot feature (6d334fdb-f7e7-11ea-88f8-901b0ef719ab)	high
140627	FreeBSD : Node.js -- September 2020 Security Releases (4ca5894c-f7f1-11ea-8ff8-0022489ad614)	high
140626	FreeBSD : FreeBSD -- bhyve privilege escalation via VMCS access (2c5b9cd7-f7e6-11ea-88f8-901b0ef719ab)	high
140558	FreeBSD : Rails -- Potential XSS vulnerability (7b630362-f468-11ea-a96c-08002728f74c)	medium
140473	FreeBSD : chromium -- multiple vulnerabilities (bed5d41a-f2b4-11ea-a878-e09467587c17)	critical
140472	FreeBSD : zeek -- Various vulnerabilities (2c92fdd3-896c-4a5a-a0d8-52acee69182d)	high
140314	FreeBSD : Multi-link PPP protocol daemon MPD5 remotely exploitable crash (cd97c7ca-f079-11ea-9c31-001b216d295b)	critical
140313	FreeBSD : Mbed TLS -- Local side channel attack on RSA and static Diffie-Hellman (bcdeb6d2-f02d-11ea-838a-0011d823eebd)	high
140312	FreeBSD : Mbed TLS -- Local side channel attack on classical CBC decryption in (D)TLS (4c69240f-f02c-11ea-838a-0011d823eebd)	medium
140311	FreeBSD : GnuTLS -- NULL pointer dereference (2272e6f1-f029-11ea-838a-0011d823eebd)	high
140310	FreeBSD : Django -- multiple vulnerabilities (002432c8-ef6a-11ea-ba8f-08002728f74c)	high
140238	FreeBSD : gnupg -- AEAD key import overflow (f9fa7adc-ee51-11ea-a240-002590acae31)	high
140237	FreeBSD : FreeBSD -- SCTP socket use-after-free bug (77b877aa-ec18-11ea-88f8-901b0ef719ab)	medium
140236	FreeBSD : FreeBSD -- dhclient heap overflow (762b7d4a-ec19-11ea-88f8-901b0ef719ab)	high
140235	FreeBSD : FreeBSD -- IPv6 Hop-by-Hop options use-after-free bug (74bbde13-ec17-11ea-88f8-901b0ef719ab)	medium
140234	FreeBSD : Gitlab -- multiple vulnerabilities (1fb13175-ed52-11ea-8b93-001b217b3468)	critical
140135	FreeBSD : go -- net/http/cgi, net/http/fcgi: XSS (XSS) when Content-Type is not specified (67b050ae-ec82-11ea-9071-10c37b4ac2ea)	medium
139935	FreeBSD : php72 -- use of freed hash key (ee261034-b95e-4479-b947-08b0877e029f)	low
139934	FreeBSD : ark -- extraction outside of extraction directory (38fdf07b-e8ec-11ea-8bbe-e0d55e2a8bf9)	low
139886	FreeBSD : chromium -- multiple vulnerabilities (d73bc4e6-e7c4-11ea-a878-e09467587c17)	high
139832	FreeBSD : xorg-server -- Multiple input validation failures in X server extensions (ffa15b3b-e6f6-11ea-8cbf-54e1ad3d6335)	high
139831	FreeBSD : libX11 -- Doublefree in locale handlng code (8da79498-e6f6-11ea-8cbf-54e1ad3d6335)	high
139830	FreeBSD : jasper -- multiple vulnerabilities (6842ac7e-d250-11ea-b9b7-08002728f74c)	high
139763	FreeBSD : chrony <= 3.5.1 data corruption through symlink vulnerability writing the pidfile (719f06af-e45e-11ea-95a1-c3b8167b8026)	medium
139740	FreeBSD : textproc/elasticsearch6 -- field disclosure flaw (fbca6863-e2ad-11ea-9d39-00a09858faf5)	medium
139739	FreeBSD : sysutils/openzfs-kmod -- critical permissions issues (2ed7e8db-e234-11ea-9392-002590bc43be)	high
139738	FreeBSD : adns -- multiple vulnerabilities (08de38d2-e2d0-11ea-9538-0c9d925bbbc0)	critical
139717	FreeBSD : Icinga Web 2 -- directory traversal vulnerability (f60561e7-e23e-11ea-be64-507b9d01076a)	high
139716	FreeBSD : security/trousers -- several vulnerabilities (e37a0a7b-e1a7-11ea-9538-0c9d925bbbc0)	high
139715	FreeBSD : curl -- expired pointer dereference vulnerability (b905dff4-e227-11ea-b0ea-08002728f74c)	high
139714	FreeBSD : Python -- multiple vulnerabilities (3fcb70a4-e22d-11ea-98b2-080027846a02)	high
139683	FreeBSD : chromium -- heap buffer overflow (64575bb6-e188-11ea-beed-e09467587c17)	high

Detections

Analytics

FreeBSD Local Security Checks Family for Nessus

high

high

high

medium

high

high

critical

medium

medium

medium

critical

high

critical

high

high

medium

high

medium

high

high

high

medium

critical

high

critical

high

medium

high

high

high

medium

high

medium

critical

medium

low

low

high

high

high

high

medium

medium

high

critical

high

high

high

high

high