FreenasCVEs & Vulnerabilities
3 CVEs affecting Freenas products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
freenas 8
CVE-2014-5334CRITICAL
FreeNAS before 9.3-M3 has a blank admin password, which allows remote attackers to gain root privileges by leveraging a WebGui login.
8 Jan 2018
9.8
CVSS
CVE-2009-2739MEDIUM
Cross-site scripting (XSS) vulnerability in FreeNAS before 0.69.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
11 Aug 2009
4.3
CVSS
CVE-2009-2738MEDIUM
Cross-site request forgery (CSRF) vulnerability in the WebGUI in FreeNAS before 0.7RC1 allows remote attackers to hijack the authentication of users for unspecified requests via unknown vectors.
11 Aug 2009
4.3
CVSS
← PrevPage 1 / 1Next →