Operations

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: lizard — Negative size passed to memcpy resulting in memory corruption Related CVEs: CVE-2018-11498 Upstream summary: [email protected] reports: In Lizard v1.0 and LZ5 v2.0 (the prior release, before the product […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: py39-sqlalchemy12 — multiple SQL Injection vulnerabilities Related CVEs: CVE-2019-7164 CVE-2019-7548 Upstream summary: 21k reports: SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter. nosecurity reports: […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: gnupg — attacker who obtains 4640 bits from the RNG can trivially predict the next 160 bits of output Related CVEs: CVE-2016-6313 Upstream summary: Werner Koch reports: There was a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: exim — SQL injection Related CVEs: CVE-2004-0400 CVE-2005-0021 CVE-2005-0022 CVE-2010-4345 CVE-2011-0017 CVE-2011-1407 CVE-2011-1764 CVE-2012-5671  +6 more Upstream summary: [email protected] reports: Exim 4.98 before 4.98.1, when SQLite hints and ETRN serialization […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: pyrad — multiple vulnerabilities Related CVEs: CVE-2013-0294 CVE-2013-0342 Upstream summary: Nathaniel McCallum reports: packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: spotipy — CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Related CVEs: CVE-2025-66040 Upstream summary: https://github.com/spotipy-dev/spotipy/security/advisories/GHSA-r77h-rpp9-w2xm reports: Spotipy is a Python library for the Spotify Web API. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: jdk — jar directory traversal vulnerability Related CVEs: CVE-2004-1029 CVE-2005-1080 Upstream summary: Pluf has discovered a vulnerability in Sun Java JDK/SDK, which potentially can be exploited by malicious people to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: iperf3 — buffer overflow Related CVEs: CVE-2016-4303 Upstream summary: ESnet reports: A malicious process can connect to an iperf3 server and, by sending a malformed message on the control channel, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: openoffice — DOC document heap overflow vulnerability Related CVEs: CVE-2004-0752 CVE-2005-0941 Upstream summary: AD-LAB reports that a heap-based buffer overflow vulnerability exists in OpenOffice's handling of DOC documents. When reading […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read  •  Source: FreeBSD VuXML VuXML topic: django — multiple vulnerabilities Related CVEs: CVE-2014-0472 CVE-2014-0473 CVE-2014-0474 CVE-2014-0480 CVE-2014-0481 CVE-2014-0482 CVE-2014-0483 CVE-2015-0219  +12 more Upstream summary: Tim Graham reports: Malicious redirect and possible XSS attack via user-supplied redirect […]