openbsd

349 tracked vulnerabilities.

CVE-2021-35000 LOW
OpenBSD Kernel - Information Disclosure via Uninitialized Memory in Multicast Routing
May 07, 2024
CVSS 3.3
EPSS 0.00
CVE-2021-34999 MEDIUM
OpenBSD Kernel - Information Disclosure via Uninitialized Memory in Multicast Routing
May 07, 2024
CVSS 5.5
EPSS 0.00
CVE-2021-46880 CRITICAL
LibreSSL <3.4.2/OpenBSD <7.0 - Auth Bypass
Apr 15, 2023
CVSS 9.8
EPSS 0.01
CVE-2021-36368 LOW
OpenSSH <8.9 - Privilege Escalation
Mar 13, 2022
CVSS 3.7
EPSS 0.02
CVE-2021-41617 HIGH
OpenSSH 6.2-8.x - Privilege Escalation via AuthorizedKeysCommand and AuthorizedPrincipalsCommand Helper Programs
Sep 26, 2021
CVSS 7.0
EPSS 0.02
CVE-2021-41581 MEDIUM
LibreSSL < 3.4.0 - Stack-based Buffer Over-read in x509_constraints_parse_mailbox
Sep 24, 2021
CVSS 5.5
EPSS 0.01
CVE-2021-28041 HIGH
ssh-agent <8.5 - Use After Free
Mar 05, 2021
CVSS 7.1
EPSS 0.03
CVE-2020-26142 MEDIUM
OpenBSD 6.6 - Network Packet Injection via Fragmented Frame Handling
May 11, 2021
CVSS 5.3
EPSS 0.02
CVE-2020-16088 CRITICAL
OpenBSD < 6.7 - Authentication Bypass in OpenIKED Public Key Check
Jul 28, 2020
CVSS 9.8
EPSS 0.02
CVE-2020-15778 HIGH
OpenSSH <= 8.3p1 - OS Command Injection via scp Destination Argument
Jul 24, 2020
CVSS 7.4
EPSS 0.13
CVE-2020-14145 MEDIUM
OpenSSH 5.7-8.4 - Information Leak via Algorithm Negotiation
Jun 29, 2020
CVSS 5.9
EPSS 0.02
CVE-2020-12062 HIGH
OpenSSH 8.2 - Arbitrary File Overwrite via Malicious Remote Subdirectory
Jun 01, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-7247 CRITICAL KEVNUCLEI
OpenSMTPD 6.6 - Remote Code Execution via MAIL FROM Field
Jan 29, 2020
CVSS 9.8
EPSS 0.99
CVE-2019-25049 HIGH
LibreSSL 2.9.1-3.2.1 - Out-of-Bounds Read in asn1_item_print_ctx
Jul 01, 2021
CVSS 7.1
EPSS 0.01
CVE-2019-25048 HIGH
LibreSSL 2.9.1-3.2.1 - Heap-Based Buffer Over-Read in ASN1_item_print
Jul 01, 2021
CVSS 7.1
EPSS 0.01
CVE-2019-19726 HIGH
OpenBSD Dynamic Loader chpass Privilege Escalation
Dec 12, 2019
CVSS 7.8
EPSS 0.04
CVE-2019-14899 HIGH
FreeBSD - TCP Stream Injection via VPN Tunnel
Dec 11, 2019
CVSS 7.4
EPSS 0.01
CVE-2019-19522 HIGH
OpenBSD 6.6 - Incorrect Permission Assignment for Critical Resource in S/Key or YubiKey Authentication
Dec 05, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-19521 CRITICAL
OpenBSD 6.6 - Authentication Bypass via -schallenge Username
Dec 05, 2019
CVSS 9.8
EPSS 0.03
CVE-2019-19520 HIGH
OpenBSD 6.6 - Privilege Escalation via LIBGL_DRIVERS_PATH Environment Variable
Dec 05, 2019
CVSS 7.8
EPSS 0.01
CVE-2019-19519 HIGH
OpenBSD 6.6 - Authentication Bypass via su -L Option
Dec 05, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-16905 HIGH
OpenSSH 7.7-7.9 and 8.x < 8.1 - Unauthenticated Remote Code Execution via XMSS Key Parsing Integer Overflow
Oct 09, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-8460 HIGH
OpenBSD <= 6.5 - Denial of Service via TCP SACK Hole Chain
Aug 26, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-6111 MEDIUM
OpenSSH < 7.9 - Arbitrary File Write via Malicious SCP Server
Jan 31, 2019
CVSS 5.9
EPSS 0.58
CVE-2019-6110 MEDIUM
OpenSSH < 7.9 - Terminal Output Manipulation via ANSI Control Codes
Jan 31, 2019
CVSS 6.8
EPSS 0.21