Openbsd

This hub aggregates every CVE we track for Openbsd, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Operating Systemson-premos

201

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

MEDIUM89HIGH66CRITICAL28LOW18

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Openbsd.

CVE-2026-55706sppp_pap_input in sys/net/if_spppsubr.c in OpenBSD before 076e2b1 allows authentication bypass via certain zero values for lengths.5.8Jun 17, 2026
CVE-2026-41285In OpenBSD through 7.8, the slaacd and rad daemons have an infinite loop when they receive a crafted ICMPv6 Neighbor Discovery (ND) option (over a local network) with length zero, because of an "nd...4.3Apr 20, 2026
CVE-2026-32772telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from clients via NEW_ENVIRON SEND USERVAR.3.4Mar 13, 2026
CVE-2025-30334OpenBSD wg(4) kernel crash6.5Mar 20, 2025
CVE-2024-11149OpenBSD vmm GDTR limits7.9Dec 6, 2024
CVE-2024-10933OpenBSD readdir directory traversal5.0Dec 5, 2024
CVE-2024-11148OpenBSD httpd(8) null dereference7.5Dec 5, 2024
CVE-2024-10934OpenBSD NFS double-free vulnerability9.8Nov 15, 2024
CVE-2021-35000OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability3.3May 7, 2024
CVE-2021-34999OpenBSD Kernel Multicast Routing Uninitialized Memory Information Disclosure Vulnerability5.5May 7, 2024
CVE-2024-29937NFS in a BSD derived codebase, as used in OpenBSD through 7.4 and FreeBSD through 14.0-RELEASE, allows remote attackers to execute arbitrary code via a bug that is unrelated to memory corruption.9.8Mar 21, 2024
CVE-2023-52558OpenBSD 7.4 and 7.3 m_split() network buffer kernel crash7.5Mar 1, 2024
CVE-2023-52557OpenBSD 7.3 invalid l2tp message npppd crash7.5Mar 1, 2024
CVE-2023-52556OpenBSD 7.4 pf state race condition kernel crash6.2Mar 1, 2024
CVE-2023-40216OpenBSD 7.3 before errata 014 is missing an argument-count bounds check in console terminal emulation. This could cause incorrect memory access and a kernel crash after receiving crafted DCS or CSI...5.5Aug 10, 2023

Product normalization is registry-driven with AI assist and human review. How it works