netbsd

174 tracked vulnerabilities.

CVE-2026-32849 MEDIUM
NetBSD Signed Integer Overflow in cryptodev_op via cryptodev.c
May 18, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-32848 MEDIUM
NetBSD cryptodev Race Condition Double-Free via cryptodev_op()
May 18, 2026
CVSS 4.7
EPSS 0.00
CVE-2024-6387 HIGH
OpenSSH - DoS
Jul 01, 2024
CVSS 8.1
EPSS 0.63
CVE-2023-45198 HIGH
ftpd < NetBSD-ftpd 20230930 - Info Disclosure
Oct 05, 2023
CVSS 7.5
EPSS 0.00
CVE-2021-45489 HIGH
NetBSD < 9.2 - Weak PRNG in IPv6 Flow Label Generation
Dec 25, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-45488 HIGH
NetBSD < 9.2 - Information Leak via TCP ISN Generation Algorithm
Dec 25, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-45487 HIGH
NetBSD < 9.2 - Use of Insufficiently Random Values in IPv4 ID Generation
Dec 25, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-45484 HIGH
NetBSD < 9.2 - Weak IPv6 Fragment ID Generation
Dec 25, 2021
CVSS 7.5
EPSS 0.00
CVE-2020-26139 MEDIUM
NetBSD 7.1 - Unauthenticated EAPOL Frame Forwarding
May 11, 2021
CVSS 5.3
EPSS 0.02
CVE-2017-1000378 CRITICAL
NetBSD < 7.1 - Uncontrolled Resource Consumption in qsort()
Jun 19, 2017
CVSS 9.8
EPSS 0.04
CVE-2017-1000375 CRITICAL
NetBSD < 7.1 - Arbitrary Code Execution via Stack Clash
Jun 19, 2017
CVSS 9.8
EPSS 0.38
CVE-2017-1000374 CRITICAL
NetBSD < 7.1 - Arbitrary Code Execution via Stack Guard Page Bypass
Jun 19, 2017
CVSS 9.8
EPSS 0.03
CVE-2016-6253 HIGH
NetBSD <7.0 - Local Privilege Escalation
Jan 20, 2017
CVSS 7.8
EPSS 0.07
CVE-2015-8212 CRITICAL
NetBSD bozohttpd CGI Handling - Remote Code Execution
Jan 19, 2017
CVSS 9.8
EPSS 0.02
CVE-2015-5917
tnftpd - Denial of Service via STAT Command Glob Pattern
Oct 09, 2015
EPSS 0.01
CVE-2014-7250
BSD TCP Stack - Denial of Service via Session Timer Mismanagement
Dec 12, 2014
EPSS 0.04
CVE-2014-8517
macOS X - Remote Command Execution via HTTP Redirect Pipe Character
Nov 17, 2014
EPSS 0.85
CVE-2014-3566 LOW
SSL/TLS Version Detection
Oct 15, 2014
CVSS 3.4
EPSS 0.94
CVE-2014-5384
FreeBSD and NetBSD - Denial of Service via VIQR Module in iconv
Aug 21, 2014
EPSS 0.00
CVE-2014-3951
FreeBSD and NetBSD - Denial of Service via iconv_open NULL Pointer Dereference
Aug 21, 2014
EPSS 0.00
CVE-2014-5015
bozohttpd < 20140708 - Unauthenticated HTTP Authentication Bypass via Long Path Truncation
Jul 24, 2014
EPSS 0.01
CVE-2012-5365 HIGH
FreeBSD and NetBSD - Denial of Service via ICMPv6 Router Advertisement Flood
Feb 20, 2020
CVSS 7.5
EPSS 0.01
CVE-2012-5363 HIGH
FreeBSD and NetBSD - Denial of Service via ICMPv6 Neighbor Solicitation Flood
Feb 20, 2020
CVSS 7.5
EPSS 0.01
CVE-2012-0217
FreeBSD Intel SYSRET Privilege Escalation
Jun 12, 2012
EPSS 0.88
CVE-2011-2480 HIGH
FreeBSD < 8.2 and NetBSD - Unauthenticated Information Disclosure via IEEE80211_IOC_CHANINFO ioctl
Nov 27, 2019
CVSS 7.5
EPSS 0.00
Products
netbsd 168 ftpd 2 src 2 tnftpd 2 netbsd_current 1 umapfs 1
Quick Filters
Critical CVEs With Exploits In CISA KEV