FreeBSD Local Security Checks Family for Nessus

ID	Name	Severity
135193	FreeBSD : chromium -- multiple vulnerabilities (9cb57a06-7517-11ea-b594-3065ec8fd3ec)	high
135192	FreeBSD : HAproxy -- serious vulnerability affecting the HPACK decoder used for HTTP/2 (7f829d44-7509-11ea-b47c-589cfc0f81b0)	high
135111	FreeBSD : cacti -- multiple vulnerabilities (e2b564fc-7462-11ea-af63-38d547003487)	high
135110	FreeBSD : GnuTLS -- flaw in DTLS protocol implementation (d887b3d9-7366-11ea-b81a-001cc0382b2f)	high
135000	FreeBSD : PostgresSQL -- ALTER ... DEPENDS ON EXTENSION is missing authorization checks (d331f691-71f4-11ea-8bb5-6cc21735f730)	medium
134999	FreeBSD : mediawiki -- multiple vulnerabilities (090763f6-7030-11ea-93dd-080027846a02)	high
134963	FreeBSD : Gitlab -- Multiple Vulnerabilities (08fba28b-6f9f-11ea-bd0b-001b217b3468)	critical
134923	FreeBSD : phpMyAdmin -- SQL injection (97fcc60a-6ec0-11ea-a84a-4c72b94353b5)	high
134922	FreeBSD : jenkins -- multiple vulnerabilities (5bf6ed6d-9002-4f43-ad63-458f59e45384)	high
134921	FreeBSD : rubygem-json -- Unsafe Objection Creation Vulnerability in JSON (Additional fix) (40194e1c-6d89-11ea-8082-80ee73419af3)	high
134844	FreeBSD : puppet6 -- Arbitrary Catalog Retrieval (77687355-52aa-11ea-b115-643150d3111d)	medium
134843	FreeBSD : puppetserver and puppetdb -- Puppet Server and PuppetDB may leak sensitive information via metrics API (36def7ba-6d2b-11ea-b115-643150d3111d)	high
134723	FreeBSD : FreeBSD -- Insufficient ixl(4) ioctl(2) privilege checking (b2b83761-6a09-11ea-92ab-00163e433440)	medium
134722	FreeBSD : FreeBSD -- Kernel memory disclosure with nested jails (6b90acba-6a0a-11ea-92ab-00163e433440)	medium
134721	FreeBSD : FreeBSD -- Insufficient oce(4) ioctl(2) privilege checking (3c10ccdf-6a09-11ea-92ab-00163e433440)	medium
134720	FreeBSD : FreeBSD -- TCP IPv6 SYN cache kernel information disclosure (0e06013e-6a06-11ea-92ab-00163e433440)	medium
134719	FreeBSD : FreeBSD -- Incorrect user-controlled pointer use in epair (0cc7e547-6a0a-11ea-92ab-00163e433440)	critical
134686	FreeBSD : www/py-bleach -- multiple vulnerabilities (3d19c776-68e7-11ea-91db-0050562a4d7b)	high
134585	FreeBSD : zeek -- potential denial of service issues (4ae135f7-85cd-4c32-ad94-358271b31f7f)	high
134467	FreeBSD : Okular -- Local binary execution via action links (c3600a64-64ea-11ea-bdff-e0d55e2a8bf9)	high
134466	FreeBSD : Gitlab -- Vulnerability (9a09eaa2-6448-11ea-abb7-001b217b3468)	high
134438	FreeBSD : py-matrix-synapse -- users of single-sign-on are vulnerable to phishing (1afe9552-5ee3-11ea-9b6d-901b0e934d69)	high
134437	FreeBSD : Django -- potential SQL injection vulnerability (1685144e-63ff-11ea-a93a-080027846a02)	high
134356	FreeBSD : Node.js -- multiple vulnerabilities (0032400f-624f-11ea-b495-000d3ab229d6)	critical
134337	FreeBSD : gitea -- multiple vulnerabilities (be088777-6085-11ea-8609-08002731610e)	high
134336	FreeBSD : salt -- salt-api vulnerability (8c98e643-6008-11ea-af63-38d547003487)	critical
134335	FreeBSD : Gitlab -- Multiple Vulnerabilities (62f2182c-5f7a-11ea-abb7-001b217b3468)	critical
134258	FreeBSD : TiMidity++ -- Multiple vulnerabilities (d37407bd-5c5f-11ea-bb2a-8c164582fbac)	medium
134257	FreeBSD : librsvg2 -- multiple vulnabilities (b66583ae-5aee-4cd5-bb31-b2d397f8b6b3)	medium
134256	FreeBSD : ntp -- Multiple vulnerabilities (591a706b-5cdc-11ea-9a0a-206a8a720317)	high
134190	FreeBSD : Solr -- multiple vulnerabilities (e59cb761-5ad8-11ea-abb7-001b217b3468)	high
133973	FreeBSD : OpenSMTPd -- LPE and RCE in OpenSMTPD's default install (f0683976-5779-11ea-8a77-1c872ccb1e42)	critical
133972	FreeBSD : Mbed TLS -- Side channel attack on ECDSA (b70b880f-5727-11ea-a2f3-001cc0382b2f)	medium
133971	FreeBSD : OpenSMTPd -- Local information disclosure (76f1ce19-5749-11ea-bff8-c85b76ce9b5a)	medium
133970	FreeBSD : OpenSMTPd -- LPE and RCE in OpenSMTPD's default install (40c75597-574a-11ea-bff8-c85b76ce9b5a)	critical
133969	FreeBSD : Mbed TLS -- Cache attack against RSA key import in SGX (056ea107-5729-11ea-a2f3-001cc0382b2f)	high
133894	FreeBSD : WeeChat -- Multiple vulnerabilities (8e3f1812-54d9-11ea-8d49-d4c9ef517024)	critical
133822	FreeBSD : webkit-gtk3 -- Multiple vulnerabilities (1cb0af4e-d641-4f99-9432-297a89447a97)	high
133710	FreeBSD : FreeBSD -- kernel stack data disclosure (6025d173-4279-11ea-b184-f8b156ac3ff9)	low
133709	FreeBSD : FreeBSD -- Missing IPsec anti-replay window check (5797c807-4279-11ea-b184-f8b156ac3ff9)	critical
133708	FreeBSD : FreeBSD -- libfetch buffer overflow (22b41bc5-4279-11ea-b184-f8b156ac3ff9)	critical
133707	FreeBSD : Gitlab -- Vulnerability (1ece5591-4ea9-11ea-86f0-001b217b3468)	high
133662	FreeBSD : grub2-bhyve -- multiple privilege escalations (9d6a48a7-4dad-11ea-8a1d-7085c25400ea)	high
133661	FreeBSD : dovecot -- multiple vulnerabilities (74db0d02-b140-4c32-aac6-1f1e81e1ad30)	medium
133630	FreeBSD : Flash Player -- arbitrary code execution (d460b640-4cdf-11ea-a59e-6451062f0f7a)	high
133629	FreeBSD : libexif -- privilege escalation (00f30cba-4d23-11ea-86ba-641c67a117d8)	high
133589	FreeBSD : NGINX -- HTTP request smuggling (c1202de8-4b29-11ea-9673-4c72b94353b5)	medium
133588	FreeBSD : ksh93 -- certain environment variables interpreted as arithmetic expressions on startup, leading to code injection (8b20d716-49df-11ea-9f7b-206a8a720317)	high
133537	FreeBSD : clamav -- Denial-of-Service (DoS) vulnerability (e7bc2b99-485a-11ea-bff9-9c5c8e75236a)	high
133476	FreeBSD : Django -- potential SQL injection vulnerability (5a45649a-4777-11ea-bdec-08002728f74c)	critical

Detections

Analytics

FreeBSD Local Security Checks Family for Nessus

high

high

high

high

medium

high

critical

high

high

high

medium

high

medium

medium

medium

medium

critical

high

high

high

high

high

high

critical

high

critical

critical

medium

medium

high

high

critical

medium

medium

critical

high

critical

high

low

critical

critical

high

high

medium

high

high

medium

high

high

critical