Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 13.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-2059
The stringprep_utf8_to_ucs4 function in libin prior to 1.31, as used in jabberd2, allows context-dependent malicious users to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.
Gnu Libidn
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 21
Fedoraproject Fedora 22
6.8
CVSSv2
CVE-2012-6303
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.
Kth Wavesurfer 1.8.8
Kth Snack Sound Toolkit 2.2.10
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
1 EDB exploit
5
CVSSv2
CVE-2015-1546
Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote malicious users to cause a denial of service (crash) via a crafted search query with a matched values control.
Openldap Openldap 2.4.40
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Apple Mac Os X 10.10.2
5
CVSSv2
CVE-2015-7207
Mozilla Firefox prior to 43.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote malicious users to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and perform...
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 22
Fedoraproject Fedora 23
5
CVSSv2
CVE-2015-7208
Mozilla Firefox prior to 43.0 stores cookies containing vertical tab characters, which allows remote malicious users to obtain sensitive information by reading HTTP Cookie headers.
Mozilla Firefox
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-7211
Mozilla Firefox prior to 43.0 mishandles the # (number sign) character in a data: URI, which allows remote malicious users to spoof web sites via unspecified vectors.
Mozilla Firefox
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
6.8
CVSSv2
CVE-2016-2824
The TSymbolTableLevel class in ANGLE, as used in Mozilla Firefox prior to 47.0 and Firefox ESR 45.x prior to 45.2 on Windows, allows remote malicious users to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact by trigge...
Mozilla Firefox Esr 45.1.0
Mozilla Firefox Esr 45.1.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox
5
CVSSv2
CVE-2016-1494
The verify function in the RSA package for Python (Python-RSA) prior to 3.3 allows malicious users to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.
Python Rsa
Fedoraproject Fedora 22
Fedoraproject Fedora 23
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
5 Github repositories
5
CVSSv2
CVE-2015-7215
The importScripts function in the Web Workers API implementation in Mozilla Firefox prior to 43.0 allows remote malicious users to bypass the Same Origin Policy by triggering use of the no-cors mode in the fetch API to attempt resource access that throws an exception, leading to ...
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Mozilla Firefox
6.8
CVSSv2
CVE-2015-7216
The gdk-pixbuf configuration in Mozilla Firefox prior to 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image.
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »