GCVE - cpe:2.3:o:freebsd:freebsd:12.0:p11:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:freebsd:freebsd:12.0:p11:*:*:*:*:*:*

part: o version: 12.0 update: p11

Vendor	Freebsd (`1e86ea60-a74f-5f45-ac35-3eb819c9e064`)
Product	Freebsd (`be9b20ed-2a20-5a94-a224-b1a6fdcacb17`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/freebsd/freebsd-src`	purl2cpe	2026-06-01 10:12:45.165246

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-7450`	vulnerable	2026-06-08 05:27:13.040625	Details available In FreeBSD 12.1-STABLE before r357213, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r357214, and 11.3-RELEASE before 11.3-RELEASE-p6, URL handling in libfetch with URLs containing username and/or password components is vulnerable to a heap buffer overflow allowing program misbehavior or malicious code execution. Published: 2020-02-18T15:26:42.000Z Updated: 2024-08-04T09:25:49.035Z Open on db.gcve.eu Reference links https://security.FreeBSD.org/advisories/FreeBSD-SA-20:01.libfetch.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-24718`	vulnerable	2026-06-08 05:22:35.421123	Details available bhyve, as used in FreeBSD through 12.1 and illumos (e.g., OmniOS CE through r151034 and OpenIndiana through Hipster 2020.04), does not properly restrict VMCS and VMCB read/write operations, as demonstrated by a root user in a container on an Intel system, who can gain privileges by modifying VMCS_HOST_RIP. Published: 2020-09-25T03:49:02.000Z Updated: 2024-08-04T15:19:09.334Z Open on db.gcve.eu Reference links https://github.com/illumos/illumos-gate/blob/84971882a96ac0fecd538b02208054a872ff8af3/usr/src/uts/i86pc/io/vmm/intel/vmcs.c#L246-L249 https://security.FreeBSD.org/advisories/FreeBSD-SA-20:28.bhyve_vmcs.asc https://security.netapp.com/advisory/ntap-20201016-0002/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2020-13434`	vulnerable	2026-06-08 05:18:00.629694	Details available SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c. Published: 2020-05-24T21:55:27.000Z Updated: 2024-08-04T12:18:18.326Z Open on db.gcve.eu Reference links https://lists.debian.org/debian-lts-announce/2020/05/msg00024.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/ https://usn.ubuntu.com/4394-1/ https://www.oracle.com/security-alerts/cpujul2020.html https://www.sqlite.org/src/info/23439ea582241138	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-5613`	vulnerable	2026-06-08 05:14:07.854257	Details available In FreeBSD 12.0-RELEASE before 12.0-RELEASE-p13, a missing check in the ipsec packet processor allows reinjection of an old packet to be accepted by the ipsec endpoint. Depending on the higher-level protocol in use over ipsec, this could allow an action to be repeated. Published: 2020-02-18T15:26:45.000Z Updated: 2024-08-04T20:01:51.762Z Open on db.gcve.eu Reference links https://security.FreeBSD.org/advisories/FreeBSD-SA-20:02.ipsec.asc	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15875`	vulnerable	2026-06-08 05:12:58.158086	Details available In FreeBSD 12.1-STABLE before r354734, 12.1-RELEASE before 12.1-RELEASE-p2, 12.0-RELEASE before 12.0-RELEASE-p13, 11.3-STABLE before r354735, and 11.3-RELEASE before 11.3-RELEASE-p6, due to incorrect initialization of a stack data structure, core dump files may contain up to 20 bytes of kernel data previously stored on the stack. Published: 2020-02-18T15:26:47.000Z Updated: 2024-08-05T01:03:32.435Z Open on db.gcve.eu Reference links https://security.FreeBSD.org/advisories/FreeBSD-SA-20:03.thrmisc.asc	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.