FreeBSD Local Security Checks Family for Nessus

IDNameSeverity
149346FreeBSD : go -- net/http: ReadRequest can stack overflow due to recursion with very large headers (7f242313-aea5-11eb-8151-67f74cf7c704)
high
149343FreeBSD : Ansible -- Insecure Temporary File (50ec3a01-ad77-11eb-8528-8c164582fbac)
low
149341FreeBSD : Django -- multiple vulnerabilities (1766359c-ad6e-11eb-b2a4-080027e50e6d)
high
149267FreeBSD : Python -- multiple vulnerabilities (bffa40db-ad50-11eb-86b8-080027846a02)
high
149249FreeBSD : RDoc -- command injection vulnerability (57027417-ab7f-11eb-9596-080027f515ea)
high
149247FreeBSD : redis -- multiple vulnerabilities (1606b03b-ac57-11eb-9bdd-8c164567ca3c)
high
149234FreeBSD : sympa -- Unauthorised full access via SOAP API due to illegal cookie (0add6e6b-6883-11eb-b0cb-f8b156c2bfe9)
medium
149231FreeBSD : samba -- negative idmap cache entries vulnerability (6f33d38b-aa18-11eb-b3f1-005056a311d1)
medium
149079FreeBSD : Gitlab -- Vulnerabilities (518a119c-a864-11eb-8ddb-001b217b3468)
high
149073FreeBSD : sympa -- Inappropriate use of the cookie parameter can be a security threat. This parameter may also not provide sufficient security. (31a7ffb1-a80a-11eb-b159-f8b156c2bfe9)
high
149071FreeBSD : Carrierwave -- Multiple vulnerabilities (76a07f31-a860-11eb-8ddb-001b217b3468)
high
149039FreeBSD : chromium -- multiple vulnerabilities (9fba80e0-a771-11eb-97a0-e09467587c17)
medium
149013FreeBSD : sbibboleth-sp -- denial of service vulnerability (e4403051-a667-11eb-b9c9-6cc21735f730)
high
148931FreeBSD : chromium -- multiple vulnerabilities (cb13a765-a277-11eb-97a0-e09467587c17)
medium
148930FreeBSD : zeek -- NULL pointer dereference vulnerability (bc83cfc9-42cf-4b00-97ad-d352ba0c5e2b)
high
148928FreeBSD : openvpn -- deferred authentication can be bypassed in specific circumstances (efb965be-a2c0-11eb-8956-1951a8617e30)
medium
148869FreeBSD : MySQL -- Multiple vulnerabilities (56ba4513-a1be-11eb-9072-d4c9ef517024)
medium
148865FreeBSD : jenkins -- Denial of service vulnerability in bundled Jetty (e358b470-b37d-4e47-bc8a-2cd9adbeb63c)
high
148840FreeBSD : All versions of Apache OpenOffice through 4.1.9 can open non-http(s) hyperlinks. If the link is specifically crafted this could lead to untrusted code execution. (e87c2647-a188-11eb-8806-1c1b0d9ea7e6)
medium
148750FreeBSD : Consul -- Multiple vulnerabilities (093a6baf-9f99-11eb-b150-000c292ee6b8)
medium
148748FreeBSD : Apache Maven -- multiple vulnerabilities (20006b5f-a0bc-11eb-8ae6-fc4dd43e2b6a)
medium
148704FreeBSD : chromium -- multiple vulnerabilities (f3d86439-9def-11eb-97a0-e09467587c17)
medium
148703FreeBSD : AccountService -- Insufficient path check in user_change_icon_file_authorized_cb() (75aae50b-9e3c-11eb-9bc3-8c164582fbac)
medium
148702FreeBSD : Gitlab -- Vulnerabilities (fb6e53ae-9df6-11eb-ba8c-001b217b3468)
medium
148697FreeBSD : mdbook -- XSS in mdBook's search page (40b481a9-9df7-11eb-9bc3-8c164582fbac)
medium
148599FreeBSD : chromium -- multiple vulnerabilities (7c0d71a9-9d48-11eb-97a0-e09467587c17)
medium
148537FreeBSD : FreeBSD -- jail escape possible by mounting over jail root (a7b97d26-9792-11eb-b87a-901b0ef719ab)
medium
148534FreeBSD : Node.js -- April 2021 Security Releases (c0c1834c-9761-11eb-acfd-0022489ad614)
high
148530FreeBSD : gitea -- multiple vulnerabilities (8ba23a62-997d-11eb-9f0e-0800278d94f0)
high
148527FreeBSD : FreeBSD -- double free in accept_filter(9) socket configuration interface (f8e1e2a6-9791-11eb-b87a-901b0ef719ab)
high
148526FreeBSD : Gitlab -- Multiple vulnerabilities (56abf87b-96ad-11eb-a218-001b217b3468)
high
148525FreeBSD : ruby -- XML round-trip vulnerability in REXML (dec7e4b6-961a-11eb-9c34-080027f515ea)
medium
148522FreeBSD : jenkins -- multiple vulnerabilities (9595d002-edeb-4602-be2d-791cd654247e)
high
148520FreeBSD : syncthing -- crash due to malformed relay protocol message (9ee01e60-6045-43df-98e5-a794007e54ef)
medium
148519FreeBSD : curl -- Automatic referer leaks credentials (b1194286-958e-11eb-9c34-080027f515ea)
medium
148518FreeBSD : upnp -- stack overflow vulnerability (79fa9f23-9725-11eb-b530-7085c2fb2c14)
medium
148517FreeBSD : curl -- TLS 1.3 session ticket proxy host mixup (d10fc771-958f-11eb-9c34-080027f515ea)
medium
148516FreeBSD : clamav -- Multiple vulnerabilites (9ae2c00f-97d0-11eb-8cd6-080027f515ea)
high
148514FreeBSD : python -- Information disclosure via pydoc -p: /getfile?key=path allows to read arbitrary file on the filesystem (f671c282-95ef-11eb-9c34-080027f515ea)
medium
148511FreeBSD : FreeBSD -- Memory disclosure by stale virtual memory mapping (13d37672-9791-11eb-b87a-901b0ef719ab)
low
148506FreeBSD : xorg-server -- Input validation failures in X server XInput extension (465db5b6-9c6d-11eb-8e8a-bc542f4bd1dd)
high
148505FreeBSD : chromium -- multiple vulnerabilities (bddadaa4-9227-11eb-99c5-e09467587c17)
medium
148503FreeBSD : gitea -- multiple vulnerabilities (094fb2ec-9aa3-11eb-83cb-0800278d94f0)
high
148211FreeBSD : nettle 3.7.2 -- fix serious ECDSA signature verify bug (80f9dbd3-8eec-11eb-b9e8-3525f51429a0)
high
148207FreeBSD : samba -- Multiple Vulnerabilities (1f6d97da-8f72-11eb-b3f1-005056a311d1)
medium
148200FreeBSD : OpenSSL -- Multiple vulnerabilities (5a668ab3-8d86-11eb-b8d6-d4c9ef517024)
medium
148147FreeBSD : gitea -- multiple vulnerabilities (c4d2f950-8c27-11eb-a3ae-0800278d94f0)
high
148140FreeBSD : spamassassin -- Malicious rule configuration (.cf) files can be configured to run system commands (ec04f3d0-8cd9-11eb-bb9f-206a8a720317)
critical
147937FreeBSD : gitea -- quoting in markdown text (1431a25c-8a70-11eb-bd16-0800278d94f0)
high
147900FreeBSD : Gitlab -- Multiple vulnerabilities (50e59056-87f2-11eb-b6a2-001b217b3468)
high