Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 13.2 vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2015-8842
tmpfiles.d/systemd.conf in systemd prior to 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file.
Opensuse Opensuse 13.2
3.3
CVSSv3
CVE-2014-9770
tmpfiles.d/systemd.conf in systemd prior to 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive information by reading these files.
Opensuse Opensuse 13.2
NA
CVE-2015-2717
Integer overflow in libstagefright in Mozilla Firefox prior to 38.0 allows remote malicious users to execute arbitrary code or cause a denial of service (heap-based buffer overflow and out-of-bounds read) via an MP4 video file containing invalid metadata.
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2015-2718
The WebChannel.jsm module in Mozilla Firefox prior to 38.0 allows remote malicious users to bypass the Same Origin Policy and obtain sensitive webchannel-response data via a crafted web site containing an IFRAME element referencing a different web site that is intended to read th...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
NA
CVE-2015-2711
Mozilla Firefox prior to 38.0 does not recognize a referrer policy delivered by a referrer META element in cases of context-menu navigation and middle-click navigation, which allows remote malicious users to obtain sensitive information by reading web-server Referer logs that con...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
NA
CVE-2015-2715
Race condition in the nsThreadManager::RegisterCurrentThread function in Mozilla Firefox prior to 38.0 allows remote malicious users to execute arbitrary code or cause a denial of service (use-after-free and heap memory corruption) by leveraging improper Media Decoder Thread crea...
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2014-4165
Cross-site scripting (XSS) vulnerability in ntop allows remote malicious users to inject arbitrary web script or HTML via the title parameter in a list action to plugins/rrdPlugin.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Ntop Ntop -
NA
CVE-2015-3335
The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc in Google Chrome prior to 42.0.2311.90 does not have RLIMIT_AS and RLIMIT_DATA limits for Native Client (aka NaCl) processes, which might make it easier for remote ma...
Google Chrome
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
NA
CVE-2014-9462
The _validaterepo function in sshpeer in Mercurial prior to 3.2.4 allows remote malicious users to execute arbitrary commands via a crafted repository name in a clone command.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mercurial Mercurial
NA
CVE-2015-2712
The asm.js implementation in Mozilla Firefox prior to 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote malicious users to trigger out-of-bounds write operations and possibly execute ar...
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »