Operations

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: vscode — security feature bypass vulnerability Related CVEs: CVE-2023-29338 CVE-2023-33144 CVE-2023-36742 CVE-2024-43601 CVE-2025-21264 CVE-2025-24039 CVE-2025-24042 Upstream summary: VSCode developers report: A security feature bypass vulnerability exists in VS Code 1.100.0 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: amaya — multiple buffer overflow vulnerabilities Related CVEs: CVE-2006-1900 CVE-2008-5282 CVE-2009-0323 Upstream summary: Secunia reports: A boundary error when processing "div" HTML tags can be exploited to cause a stack-based […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: NSS — multiple vulnerabilities Related CVEs: CVE-2009-3555 CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0179  +3 more Upstream summary: Mozilla Foundation reports: An out-of-bounds write during Base64 decoding operation in the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2024-32879 CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: awstats — arbitrary commands execution vulnerability Related CVEs: CVE-2008-3714 CVE-2008-5080 CVE-2010-4367 Upstream summary: Awstats change log reports: Security fix (Traverse directory of LoadPlugin) Security fix (Limit config to defined directory […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py-treq — sensitive information leak vulnerability Related CVEs: CVE-2022-23607 Upstream summary: Treq's request methods (`treq.get`, `treq.post`, `HTTPClient.request`, `HTTPClient.get`, etc.) accept cookies as a dictionary. Such cookies are not bound to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: ISC KEA — Invalid characters cause assert Related CVEs: CVE-2025-11232 CVE-2025-40779 Upstream summary: Internet Systems Consortium, Inc. reports: To trigger the issue, three configuration parameters must have specific settings: "hostname-char-set" […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: End of Life Ports Upstream summary: These packages have reached End of Life status and/or have been removed from the Ports Tree. They may contain undocumented security issues. Please take […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: acroread — XML External Entity vulnerability Related CVEs: CVE-2005-1306 Upstream summary: Sverre H. Huseby discovered a vulnerability in Adobe Acrobat and Adobe Reader. Under certain circumstances, using XML scripts it […]