Freenas : Security Vulnerabilities, CVEs,

CVE-2014-5334

FreeNAS before 9.3-M3 has a blank admin password, which allows remote attackers to gain root privileges by leveraging a WebGui login.
Max CVSS
10.0
EPSS Score
0.60%
Published
2018-01-08
Updated
2018-01-29

CVE-2009-2739

Cross-site scripting (XSS) vulnerability in FreeNAS before 0.69.2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Max CVSS
4.3
EPSS Score
0.22%
Published
2009-08-11
Updated
2009-09-02

CVE-2009-2738

Cross-site request forgery (CSRF) vulnerability in the WebGUI in FreeNAS before 0.7RC1 allows remote attackers to hijack the authentication of users for unspecified requests via unknown vectors.
Max CVSS
4.3
EPSS Score
0.15%
Published
2009-08-11
Updated
2009-08-18
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close