Netbsd

netbsd

Vendor: Netbsd • 168 CVEs

CVEs (168)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-6387 13Almalinux AmazonApple+10 more 53500f Firmware 8300 Firmware8700 Firmware+50 more May 12, 2026 Jul 1, 2024 N/A· v4 8.1 HIGH· v3 N/A· v2 A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able t...Show more A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.Show less
CVE-2021-45489 1Netbsd 1Netbsd Nov 21, 2024 Dec 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In NetBSD through 9.2, the IPv6 Flow Label generation algorithm employs a weak cryptographic PRNG.
CVE-2021-45488 1Netbsd 1Netbsd Nov 21, 2024 Dec 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In NetBSD through 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.
CVE-2021-45487 1Netbsd 1Netbsd Nov 21, 2024 Dec 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In NetBSD through 9.2, the IPv4 ID generation algorithm does not use appropriate cryptographic measures.
CVE-2021-45484 1Netbsd 1Netbsd Nov 21, 2024 Dec 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In NetBSD through 9.2, the IPv6 fragment ID generation algorithm employs a weak cryptographic PRNG.
CVE-2020-26139 5Arista CiscoDebian+2 more 1661100 4p Firmware 1100 8p Firmware1100 Firmware+163 more Apr 14, 2026 May 11, 2021 N/A· v4 5.3 MEDIUM· v3 2.9 LOW· v2 An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected...Show more An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and makes it easier to exploit other vulnerabilities in connected clients.Show less
CVE-2012-5365 2Freebsd Netbsd 2Freebsd Netbsd Nov 21, 2024 Feb 20, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows remote attackers to cause a denial of service via a flood of ICMPv6 Router Advertisement packets containing multiple Routing...Show more The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows remote attackers to cause a denial of service via a flood of ICMPv6 Router Advertisement packets containing multiple Routing entries.Show less
CVE-2012-5363 2Freebsd Netbsd 2Freebsd Netbsd Nov 21, 2024 Feb 20, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability...Show more The IPv6 implementation in FreeBSD and NetBSD (unknown versions, year 2012 and earlier) allows remote attackers to cause a denial of service via a flood of ICMPv6 Neighbor Solicitation messages, a different vulnerability than CVE-2011-2393.Show less
CVE-2011-2480 2Freebsd Netbsd 2Freebsd Netbsd Nov 21, 2024 Nov 27, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allows a local unprivile...Show more Information Disclosure vulnerability in the 802.11 stack, as used in FreeBSD before 8.2 and NetBSD when using certain non-x86 architectures. A signedness error in the IEEE80211_IOC_CHANINFO ioctl allows a local unprivileged user to cause the kernel to copy large amounts of kernel memory back to the user, disclosing potentially sensitive information.Show less
CVE-2017-1000378 1Netbsd 1Netbsd May 13, 2026 Jun 19, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consum...Show more The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack memory and manipulate stack memory to assist in arbitrary code execution attacks. This affects NetBSD 7.1 and possibly earlier versions.Show less
CVE-2017-1000375 1Netbsd 1Netbsd May 13, 2026 Jun 19, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and...Show more NetBSD maps the run-time link-editor ld.so directly below the stack region, even if ASLR is enabled, this allows attackers to more easily manipulate memory leading to arbitrary code execution. This affects NetBSD 7.1 and possibly earlier versions.Show less
CVE-2017-1000374 1Netbsd 1Netbsd May 13, 2026 Jun 19, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A flaw exists in NetBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using certain setuid binaries. This affects NetBSD 7.1 and possibly earlier versio...Show more A flaw exists in NetBSD's implementation of the stack guard page that allows attackers to bypass it resulting in arbitrary code execution using certain setuid binaries. This affects NetBSD 7.1 and possibly earlier versions.Show less
CVE-2016-6253 1Netbsd 1Netbsd May 13, 2026 Jan 20, 2017 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox.
CVE-2015-8212 1Netbsd 1Netbsd May 13, 2026 Jan 19, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 CGI handling flaw in bozohttpd in NetBSD 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows remote attackers to execute arbitrary code via crafted arguments, which are handled by a non-CGI aware program.
CVE-2014-7250 4Bsd FreebsdNetbsd+1 more 4Bsd FreebsdNetbsd+1 more May 6, 2026 Dec 12, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource co...Show more The TCP stack in 4.3BSD Net/2, as used in FreeBSD 5.4, NetBSD possibly 2.0, and OpenBSD possibly 3.6, does not properly implement the session timer, which allows remote attackers to cause a denial of service (resource consumption) via crafted packets.Show less
CVE-2014-8517 2Apple Netbsd 2Mac Os X Netbsd May 6, 2026 Nov 17, 2014 N/A· v4 N/A· v3 7.5 HIGH· v2 The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a \| (pipe...Show more The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 through 5.1.4, 5.2 through 5.2.2, 6.0 through 6.0.6, and 6.1 through 6.1.5 allows remote attackers to execute arbitrary commands via a \| (pipe) character at the end of an HTTP redirect.Show less
CVE-2014-3566 11Apple DebianFedoraproject+8 more 20Aix DatabaseDebian Linux+17 more May 28, 2026 Oct 15, 2014 N/A· v4 3.4 LOW· v3 4.3 MEDIUM· v2 The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a...Show more The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the "POODLE" issue.Show less
CVE-2014-5384 2Freebsd Netbsd 2Freebsd Netbsd May 6, 2026 Aug 21, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open funct...Show more The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT from CVE-2014-3951 per ADT2 due to different vulnerability types.Show less
CVE-2014-3951 2Freebsd Netbsd 2Freebsd Netbsd May 6, 2026 Aug 21, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted argument to the iconv_open function....Show more The HZ module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a crafted argument to the iconv_open function. NOTE: this issue was SPLIT per ADT2 due to different vulnerability types. CVE-2014-5384 is used for the NULL pointer dereference.Show less
CVE-2014-5015 2Eterna Netbsd 2Bozohttpd Netbsd May 6, 2026 Jul 24, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 bozotic HTTP server (aka bozohttpd) before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions...Show more bozotic HTTP server (aka bozohttpd) before 20140708, as used in NetBSD, truncates paths when checking .htpasswd restrictions, which allows remote attackers to bypass the HTTP authentication scheme and access restrictions via a long path.Show less

12 3 4 5...9 Next