CVEs (198)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
cron in OpenBSD 2.5 allows local users to gain root privileges via an argv[] that is not NULL terminated, which is passed to cron's fake popen function. |
IP fragment assembly in OpenBSD 2.4 allows a remote attacker to cause a denial of service by sending a large number of fragmented packets. |
The i386 trace-trap handling in OpenBSD 2.4 with DDB enabled allows a local user to cause a denial of service. |
3David Madore NetbsdOpenbsd3Ftpd Bsd NetbsdOpenbsdApr 16, 2026 Feb 12, 2001 N/A· v4 N/A· v3 10.0 HIGH· v2 One-byte buffer overflow in replydirname function in BSD-based ftpd allows remote attackers to gain root privileges. |
Format string vulnerabilities in eeprom program in OpenBSD, NetBSD, and possibly other operating systems allows local attackers to gain root privileges. |
Format string vulnerability in OpenBSD su program (and possibly other BSD-based operating systems) allows local attackers to gain root privileges via a malformed shell. |
Format string vulnerability in OpenBSD yp_passwd program (and possibly other BSD-based operating systems) allows attackers to gain root privileges a malformed name. |
Format string vulnerability in OpenBSD fstat program (and possibly other BSD-based operating systems) allows local users to gain root privileges via the PWD environmental variable. |
3Freebsd NetbsdOpenbsd3Freebsd NetbsdOpenbsdApr 16, 2026 Dec 19, 2000 N/A· v4 N/A· v3 7.2 HIGH· v2 Format string vulnerability in pw_error function in BSD libutil library allows local users to gain root privileges via a malformed password in commands such as chpass or passwd. |
The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service. |
OpenBSD 2.6 and earlier allows remote attackers to cause a denial of service by flooding the server with ARP requests. |
Format string vulnerability in talkd in OpenBSD and possibly other BSD-based OSes allows remote attackers to execute arbitrary commands via a user name that contains format characters. |
Format string vulnerability in OpenBSD photurisd allows local users to execute arbitrary commands via a configuration file directory name that contains formatting characters. |
3Netbsd OpenbsdRedhat3Linux NetbsdOpenbsdApr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 7.5 HIGH· v2 mopd (Maintenance Operations Protocol loader daemon) does not properly cleanse user-injected format strings, which allows remote attackers to execute arbitrary commands. |
3Netbsd OpenbsdRedhat3Linux NetbsdOpenbsdApr 16, 2026 Oct 20, 2000 N/A· v4 N/A· v3 7.5 HIGH· v2 Buffer overflow in mopd (Maintenance Operations Protocol loader daemon) allows remote attackers to execute arbitrary commands via a long file name. |
3Freebsd NetbsdOpenbsd3Freebsd NetbsdOpenbsdApr 16, 2026 Jan 19, 2000 N/A· v4 N/A· v3 6.2 MEDIUM· v2 The BSD make program allows local users to modify files via a symlink attack when the -j option is being used. |
3Bsdi FreebsdOpenbsd3Bsd Os FreebsdOpenbsdApr 16, 2026 Dec 30, 1999 N/A· v4 N/A· v3 5.0 MEDIUM· v2 ip_input.c in BSD-derived TCP/IP implementations allows remote attackers to cause a denial of service (crash or hang) via crafted packets. |
3Freebsd NetbsdOpenbsd3Freebsd NetbsdOpenbsdApr 16, 2026 Sep 5, 1999 N/A· v4 N/A· v3 2.1 LOW· v2 FreeBSD, NetBSD, and OpenBSD allow an attacker to cause a denial of service by creating a large number of socket pairs using the socketpair function, setting a large buffer size via setsockopt, then writing large buffers...Show more |
Buffer overflow in OpenBSD procfs and fdescfs file systems via uio_offset in the readdir() function. |
3Netbsd OpenbsdSun4Netbsd OpenbsdSolaris+1 moreApr 16, 2026 Aug 9, 1999 N/A· v4 N/A· v3 7.2 HIGH· v2 The BSD profil system call allows a local user to modify the internal data space of a program via profiling and execve. |