Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 13.1 vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2013-3713
The image creation configuration in aaa_base prior to 16.26.1 for openSUSE 13.1 KDE adds the root user to the "users" group when installing from a live image, which allows local users to obtain sensitive information and possibly have other unspecified impacts, as demons...
Opensuse Opensuse 13.1
7.5
CVSSv2
CVE-2014-9462
The _validaterepo function in sshpeer in Mercurial prior to 3.2.4 allows remote malicious users to execute arbitrary commands via a crafted repository name in a clone command.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mercurial Mercurial
3.6
CVSSv2
CVE-2015-4156
GNU Parallel prior to 20150522 (Nepal), when using (1) --cat or (2) --fifo with --sshlogin, allows local users to write to arbitrary files via a symlink attack on a temporary file.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Gnu Parallel
7.1
CVSSv2
CVE-2014-8643
Mozilla Firefox prior to 35.0 on Windows allows remote malicious users to bypass the Gecko Media Plugin (GMP) sandbox protection mechanism by leveraging access to the GMP process, as demonstrated by the OpenH264 plugin's process.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
1 Article
4.3
CVSSv2
CVE-2014-4165
Cross-site scripting (XSS) vulnerability in ntop allows remote malicious users to inject arbitrary web script or HTML via the title parameter in a list action to plugins/rrdPlugin.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Ntop Ntop -
7.5
CVSSv2
CVE-2015-3335
The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc in Google Chrome prior to 42.0.2311.90 does not have RLIMIT_AS and RLIMIT_DATA limits for Native Client (aka NaCl) processes, which might make it easier for remote ma...
Google Chrome
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
6.8
CVSSv2
CVE-2014-0158
Heap-based buffer overflow in the JPEG2000 image tile decoder in OpenJPEG prior to 1.5.2 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file because of incorrect j2k_decode, j2k_read_eoc, and ...
Uclouvain Openjpeg
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
7.5
CVSSv2
CVE-2013-6641
Use-after-free vulnerability in the FormAssociatedElement::formRemovedFromTree function in core/html/FormAssociatedElement.cpp in Blink, as used in Google Chrome prior to 32.0.1700.76 on Windows and prior to 32.0.1700.77 on Mac OS X and Linux, allows remote malicious users to cau...
Google Chrome
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
7.5
CVSSv2
CVE-2015-2712
The asm.js implementation in Mozilla Firefox prior to 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote malicious users to trigger out-of-bounds write operations and possibly execute ar...
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
4.4
CVSSv2
CVE-2014-9065
common/spinlock.c in Xen 4.4.x and previous versions does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability...
Xen Xen
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »