FreeBSD Local Security Checks Family for Nessus

IDNameSeverity
243016FreeBSD : p5-Crypt-CBC -- Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) (cd7f969e-6cb4-11f0-97c4-40b034429ecf)
medium
242929FreeBSD : Mozilla -- Insufficient input escaping (44b3048b-685e-11f0-a12d-b42e991fc52e)
high
242928FreeBSD : powerdns-recursor -- cache pollution (b3948bf3-685e-11f0-bff5-6805ca2fa271)
high
242927FreeBSD : Mozilla -- cookie shadowing (5abc2187-685e-11f0-a12d-b42e991fc52e)
critical
242926FreeBSD : Mozilla -- Memory safety bugs (4faa01cb-685e-11f0-a12d-b42e991fc52e)
high
242925FreeBSD : Mozilla -- XSLT document CSP bypass (4a357f4b-685e-11f0-a12d-b42e991fc52e)
high
242924FreeBSD : Mozilla -- 'javascript:' URLs execution (419bcf99-685e-11f0-a12d-b42e991fc52e)
high
242923FreeBSD : Mozilla -- Multiple vulnerabilities (67c6461f-685e-11f0-a12d-b42e991fc52e)
critical
242922FreeBSD : Mozilla -- Memory safety bugs (55096bd3-685e-11f0-a12d-b42e991fc52e)
high
242921FreeBSD : Mozilla -- Ignored paths while checking navigations (5d91def0-685e-11f0-a12d-b42e991fc52e)
critical
242920FreeBSD : Mozilla -- CORS circumvention (58027367-685e-11f0-a12d-b42e991fc52e)
high
242919FreeBSD : Mozilla -- Persisted search terms in the URL bar (6088905c-685e-11f0-a12d-b42e991fc52e)
high
242918FreeBSD : Mozilla -- HTTP Basic Authentication credentials leak (477e9eb3-685e-11f0-a12d-b42e991fc52e)
critical
242917FreeBSD : Mozilla -- nullptr dereference (4d03efe7-685e-11f0-a12d-b42e991fc52e)
medium
242916FreeBSD : Mozilla -- Incorrect computation of branch address (3e9406a7-685e-11f0-a12d-b42e991fc52e)
critical
242915FreeBSD : gdk-pixbuf2 -- a heap buffer overflow (3d4393b2-68a5-11f0-b2b4-589cfc10832a)
high
242914FreeBSD : Mozilla -- IonMonkey-JIT bad stack write (3c234220-685e-11f0-a12d-b42e991fc52e)
medium
242913FreeBSD : Mozilla -- Memory safety bugs (62f1a68f-685e-11f0-a12d-b42e991fc52e)
high
242912FreeBSD : Gitlab -- vulnerabilities (5683b3a7-683d-11f0-966e-2cf05da270f3)
high
242898FreeBSD : viewvc -- Arbitrary server filesystem content (c37f29ba-6ae3-11f0-b4bf-ecf4bbefc954)
high
242862FreeBSD : rubygem-resolv -- Possible denial of service (eed1a411-699b-11f0-91fe-000c295725e4)
high
242649FreeBSD : sqlite -- Integer Truncation on SQLite (0f5bcba2-67fb-11f0-9ee5-b42e991fc52e)
high
242613FreeBSD : 7-Zip -- Multi-byte write heap buffer overflow in NCompress::NRar5::CDecoder (80411ba2-6729-11f0-a5cb-8c164580114f)
medium
242413FreeBSD : libwasmtime -- host panic with fd_renumber WASIp1 function (605a9d1e-6521-11f0-beb2-ac5afc632ba3)
low
242336FreeBSD : unbound -- Cache poisoning via the ECS-enabled Rebirthday Attack (e27ee4fc-cdc9-45a1-8242-09898cdbdc91)
high
242080FreeBSD : GnuTLS -- multiple vulnerabilities (c3e1df74-5e73-11f0-95e5-74563cf9e4e9)
medium
242079FreeBSD : liboqs -- Secret-dependent branching in HQC (aeac223e-60e1-11f0-8baa-8447094a420f)
medium
242030FreeBSD : libxml2 -- multiple vulnerabilities (abbc8912-5efa-11f0-ae84-99047d0a6bcc)
low
242029FreeBSD : libxslt -- unmaintained, with multiple unfixed vulnerabilities (b0a3466f-5efc-11f0-ae84-99047d0a6bcc)
high
242028FreeBSD : Apache httpd -- Multiple vulnerabilities (342f2a0a-5e9b-11f0-8baa-8447094a420f)
high
242027FreeBSD : mod_http2 -- Multiple vulnerabilities (61d74f80-5e9e-11f0-8baa-8447094a420f)
high
242005FreeBSD : Apache Tomcat -- Multiple Vulnerabilities (ef87346f-5dd0-11f0-beb2-ac5afc632ba3)
medium
241713FreeBSD : Gitlab -- vulnerabilities (20823cc0-5d45-11f0-966e-2cf05da270f3)
high
241648FreeBSD : ModSecurity -- empty XML tag causes segmentation fault (c0f3f54c-5bc4-11f0-834f-b42e991fc52e)
medium
241647FreeBSD : MongoDB -- may be susceptible to privilege escalation due to $mergeCursors stage (77dc1fc4-5bc5-11f0-834f-b42e991fc52e)
high
241646FreeBSD : MongoDB -- Incomplete Redaction of Sensitive Information in MongoDB Server Logs (72ddee1f-5bc5-11f0-834f-b42e991fc52e)
medium
241645FreeBSD : MongoDB -- Incorrect Handling of incomplete data may prevent mongoS from Accepting New Connections (79251dc8-5bc5-11f0-834f-b42e991fc52e)
high
241644FreeBSD : git -- multiple vulnerabilities (2a4472ed-5c0d-11f0-b991-291fce777db8)
high
241643FreeBSD : MongoDB -- may be susceptible to DoS due to Accumulated Memory Allocation (764204eb-5bc5-11f0-834f-b42e991fc52e)
medium
241491FreeBSD : FreeBSD -- Use-after-free in multi-threaded xz decoder (7642ba72-5abf-11f0-87ba-002590c1f29c)
high
241490FreeBSD : redis,valkey -- {redis,valkey}-check-aof may lead to stack overflow and potential RCE (4ea9cbc3-5b28-11f0-b507-000c295725e4)
medium
241489FreeBSD : redis,valkey -- DoS Vulnerability due to bad connection error handling (7b3e7f71-5b30-11f0-b507-000c295725e4)
high
241488FreeBSD : redis,valkey -- Out of bounds write in hyperloglog commands leads to RCE (f11d0a69-5b2d-11f0-b507-000c295725e4)
high
241425FreeBSD : firefox -- multiple vulnerabilities (a55d2120-58cf-11f0-b4ad-b42e991fc52e)
critical
241424FreeBSD : Mozilla -- persistent UUID that identifies browser (9320590b-58cf-11f0-b4ad-b42e991fc52e)
medium
241423FreeBSD : firefox -- multiple vulnerabilities (9bad6f79-58cf-11f0-b4ad-b42e991fc52e)
medium
241387FreeBSD : gstreamer1-plugins-bad -- stack buffer overflow in H.266 video parser (69bfe2a4-5a39-11f0-8792-4ccc6adda413)
critical
241331FreeBSD : Mozilla -- exploitable crash (bab7386a-582f-11f0-97d0-b42e991fc52e)
critical
241330FreeBSD : php -- Multiple vulnerabilities (d607b12c-5821-11f0-ab92-f02f7497ecda)
high
241209FreeBSD : chromium -- multiple security fixes (9c91e1f8-f255-4b57-babe-2e385558f1dc)
medium