Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
fuse fuse 2.2.1 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2005-1858
FUSE 2.x prior to 2.3.0 does not properly clear previously used memory from unfilled pages when the filesystem returns a short byte count to a read request, which may allow local users to obtain sensitive information.
Fuse Fuse 2.2
Fuse Fuse 2.2.1
Fuse Fuse 2.3 Pre
Fuse Fuse 2.3 Rc1
1 EDB exploit
3.3
CVSSv2
CVE-2010-0789
fusermount in FUSE prior to 2.7.5, and 2.8.x prior to 2.8.2, allows local users to unmount an arbitrary FUSE filesystem share via a symlink attack on a mountpoint.
Fuse Fuse 2.4.1
Fuse Fuse 2.4.2
Fuse Fuse 2.6.3
Fuse Fuse 2.6.5
Fuse Fuse 2.7.0
Fuse Fuse 2.3
Fuse Fuse 2.3.0
Fuse Fuse 2.4.0
Fuse Fuse 2.6.0
Fuse Fuse 2.6.1
Fuse Fuse 2.2
Fuse Fuse 2.2.1
Fuse Fuse 1.9
Fuse Fuse 2.0
Fuse Fuse 2.5.0
Fuse Fuse 2.5.1
Fuse Fuse 2.7.1
Fuse Fuse 2.7.2
Fuse Fuse 2.1
Fuse Fuse 2.5.2
Fuse Fuse 2.5.3
Fuse Fuse 2.7.3
3.3
CVSSv2
CVE-2011-0541
fuse 2.8.5 and previous versions does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount arbitrary directories via a symlink attack.
Fuse Fuse 2.4.2
Fuse Fuse 2.6.0
Fuse Fuse 2.4.1
Fuse Fuse 2.2
Fuse Fuse 2.6.5
Fuse Fuse 2.7.0
Fuse Fuse 2.7.4
Fuse Fuse 2.3.0
Fuse Fuse 2.4.0
Fuse Fuse 2.6.3
Fuse Fuse 2.5.3
Fuse Fuse 2.3
Fuse Fuse 2.0
Fuse Fuse 2.8.1
Fuse Fuse 2.2.1
Fuse Fuse 2.5.1
Fuse Fuse 2.7.1
Fuse Fuse 2.8.2
Fuse Fuse 2.7.2
Fuse Fuse 2.1
Fuse Fuse 2.8.0
Fuse Fuse 2.5.2
3.3
CVSSv2
CVE-2011-0542
fusermount in fuse 2.8.5 and previous versions does not perform a chdir to / before performing a mount or umount, which allows local users to unmount arbitrary directories via unspecified vectors.
Fuse Fuse 2.4.2
Fuse Fuse 2.6.0
Fuse Fuse 2.4.1
Fuse Fuse 2.2
Fuse Fuse 2.6.5
Fuse Fuse 2.7.0
Fuse Fuse 2.7.4
Fuse Fuse 2.3.0
Fuse Fuse 2.4.0
Fuse Fuse 2.6.3
Fuse Fuse 2.5.3
Fuse Fuse 2.3
Fuse Fuse 2.0
Fuse Fuse 2.8.1
Fuse Fuse 2.2.1
Fuse Fuse 2.5.1
Fuse Fuse 2.7.1
Fuse Fuse 2.8.2
Fuse Fuse 2.7.2
Fuse Fuse 2.1
Fuse Fuse 2.8.0
Fuse Fuse 2.5.2
3.3
CVSSv2
CVE-2011-0543
Certain legacy functionality in fusermount in fuse 2.8.5 and previous versions, when util-linux does not support the --no-canonicalize option, allows local users to bypass intended access restrictions and unmount arbitrary directories via a symlink attack.
Fuse Fuse 2.4.2
Fuse Fuse 2.6.0
Fuse Fuse 2.4.1
Fuse Fuse 2.2
Fuse Fuse 2.6.5
Fuse Fuse 2.7.0
Fuse Fuse 2.7.4
Fuse Fuse 2.3.0
Fuse Fuse 2.4.0
Fuse Fuse 2.6.3
Fuse Fuse 2.5.3
Fuse Fuse 2.3
Fuse Fuse 2.0
Fuse Fuse 2.8.1
Fuse Fuse 2.2.1
Fuse Fuse 2.5.1
Fuse Fuse 2.7.1
Fuse Fuse 2.8.2
Fuse Fuse 2.7.2
Fuse Fuse 2.1
Fuse Fuse 2.8.0
Fuse Fuse 2.5.2
2.1
CVSSv2
CVE-2005-3531
fusermount in FUSE prior to 2.4.1, if installed setuid root, allows local users to corrupt /etc/mtab and possibly modify mount options by performing a mount over a directory whose name contains certain special characters.
Miklos Szeredi Fuse 2.2.1
Miklos Szeredi Fuse 2.3.0
Miklos Szeredi Fuse 2.2
Miklos Szeredi Fuse 2.3 Rc1
Miklos Szeredi Fuse 2.4.0
NA
CVE-2021-4178
A arbitrary code execution flaw was found in the Fabric 8 Kubernetes client affecting versions 5.0.0-beta-1 and above. Due to an improperly configured YAML parsing, this will allow a local and privileged malicious user to supply malicious YAML.
Redhat Fabric8-kubernetes
Redhat Fabric8-kubernetes 5.8.0
Redhat Fabric8-kubernetes 5.0.0
Redhat Process Automation 7.0
Redhat Openshift Application Runtimes -
Redhat Descision Manager 7.0
Redhat Integration Camel K -
Redhat A-mq Streams 2.0.1
Redhat Fuse 7.11
Redhat Integration Camel Quarkus 2.2.1
Redhat Build Of Quarkus 2.2.5
7.9
CVSSv2
CVE-2021-2471
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Con...
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.7.0
Oracle Mysql Connectors
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Communications Cloud Native Core Network Slice Selection Function 1.8.0
Quarkus Quarkus
3 Github repositories
5
CVSSv2
CVE-2021-40690
All versions of Apache Santuario - XML Security for Java before 2.2.3 and 2.1.7 are vulnerable to an issue where the "secureValidation" property is not passed correctly when creating a KeyInfo from a KeyInfoReference element. This allows an malicious user to abuse an XP...
Apache Santuario Xml Security For Java
Apache Tomee
Apache Cxf 3.4.4
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Oracle Flexcube Private Banking 12.1.0
Oracle Agile Plm 9.3.6
Oracle Weblogic Server 12.2.1.4.0
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Outside In Technology 8.5.5
Oracle Weblogic Server 14.1.1.0.0
Oracle Retail Merchandising System 16.0.3
Oracle Retail Service Backbone 16.0.3
Oracle Retail Financial Integration 16.0.3
Oracle Retail Integration Bus 16.0.3
Oracle Commerce Guided Search 11.3.2
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Retail Service Backbone 15.0.3.1
Oracle Retail Service Backbone 14.1.3.2
Oracle Communications Messaging Server 8.1
Oracle Retail Merchandising System 19.0.1
3 Github repositories
4.3
CVSSv2
CVE-2021-38153
Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that make brute force attacks for such credentials more likely to be successful. Users should upgrade to 2.8.1 or higher, or 3.0.0 or higher where this vulnera...
Apache Kafka
Apache Kafka 2.8.0
Quarkus Quarkus
Oracle Primavera Unifier 18.8
Oracle Primavera Unifier 19.12
Oracle Primavera Unifier 20.12
Oracle Primavera Unifier 21.12
Oracle Financial Services Enterprise Case Management 8.0.8.1
Oracle Financial Services Enterprise Case Management 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.2.0
Oracle Financial Services Behavior Detection Platform 8.1.1.1
Oracle Financial Services Behavior Detection Platform 8.1.1.0
Oracle Financial Services Enterprise Case Management 8.0.7.1
Oracle Financial Services Enterprise Case Management 8.0.8.0
Oracle Financial Services Behavior Detection Platform
Oracle Communications Cloud Native Core Policy 1.15.0
Oracle Financial Services Enterprise Case Management 8.0.7.2
Oracle Financial Services Analytical Applications Infrastructure
Oracle Communications Brm - Elastic Charging Engine 12.0.0.5.0
Oracle Communications Brm - Elastic Charging Engine
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »