Vulnerabilidades em OpenBSD
21 resultadosCVE-2023-52558HIGHOpenBSD 7.4 and 7.3 m_split() network buffer kernel crashEPSS 0.7%CVE-2023-52557HIGHOpenBSD 7.3 invalid l2tp message npppd crashEPSS 0.6%CVE-2024-10934CRITICALOpenBSD NFS double-free vulnerabilityEPSS 0.4%CVE-2024-11148HIGHOpenBSD httpd(8) null dereferenceEPSS 0.4%CVE-2025-30334HIGHOpenBSD wg(4) kernel crashEPSS 0.4%CVE-2026-56099MEDIUMOpenBSD mpls_do_error Kernel Stack Memory Disclosure via MPLS InputEPSS 0.4%CVE-2026-35385HIGHIn OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the EPSS 0.3%CVE-2024-10933MEDIUMOpenBSD readdir directory traversalEPSS 0.3%CVE-2021-35000LOWOpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure VulnerabilityEPSS 0.2%CVE-2026-35386LOWIn OpenSSH before 10.3, command execution can occur via shell metacharacters in a username within a command line. This requires a scenario wEPSS 0.2%CVE-2021-34999LOWOpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure VulnerabilityEPSS 0.2%CVE-2026-35387LOWOpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgoEPSS 0.2%CVE-2025-61984LOWssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leadinEPSS 0.2%CVE-2026-55706MEDIUMsppp_pap_input in sys/net/if_spppsubr.c in OpenBSD before 076e2b1 allows authentication bypass via certain zero values for lengths.EPSS 0.2%CVE-2026-41285MEDIUMIn OpenBSD through 7.8, the slaacd and rad daemons have an infinite loop when they receive a crafted ICMPv6 Neighbor Discovery (ND) option (EPSS 0.2%CVE-2026-35414MEDIUMOpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with aEPSS 0.2%CVE-2025-32728MEDIUMIn sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent EPSS 0.1%CVE-2023-52556MEDIUMOpenBSD 7.4 pf state race condition kernel crashEPSS 0.1%CVE-2024-11149MEDIUMOpenBSD vmm GDTR limitsEPSS 0.1%CVE-2026-35388LOWOpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions.EPSS 0.1%