Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 13.2 vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2014-5026
Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote authenticated users with console access to inject arbitrary web script or HTML via a (1) Graph Tree Title in a delete or (2) edit action; (3) CDEF Name, (4) Data Input Method Name, or (5) Host Templa...
Debian Debian Linux 7.0
Cacti Cacti 0.8.8b
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
6.4
CVSSv2
CVE-2015-0255
X.Org Server (aka xserver and xorg-server) prior to 1.16.3 and 1.17.x prior to 1.17.1 allows remote malicious users to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.
X.org Xorg-server 1.17.0
X.org Xorg-server
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
5
CVSSv2
CVE-2015-8041
Multiple integer overflows in the NDEF record parser in hostapd prior to 2.5 and wpa_supplicant prior to 2.5 allow remote malicious users to cause a denial of service (process crash or infinite loop) via a large payload length field value in an (1) WPS or (2) P2P NFC NDEF record,...
W1.fi Wpa Supplicant
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
W1.fi Hostapd
5
CVSSv2
CVE-2016-1234
Stack-based buffer overflow in the glob implementation in GNU C Library (aka glibc) prior to 2.24, when GLOB_ALTDIRFUNC is used, allows context-dependent malicious users to cause a denial of service (crash) via a long name.
Gnu Glibc
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
5
CVSSv2
CVE-2015-1546
Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote malicious users to cause a denial of service (crash) via a crafted search query with a matched values control.
Openldap Openldap 2.4.40
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Apple Mac Os X 10.10.2
6.8
CVSSv2
CVE-2012-6303
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.
Kth Wavesurfer 1.8.8
Kth Snack Sound Toolkit 2.2.10
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
1 EDB exploit
7.5
CVSSv2
CVE-2015-2059
The stringprep_utf8_to_ucs4 function in libin prior to 1.31, as used in jabberd2, allows context-dependent malicious users to read system memory and possibly have other unspecified impact via invalid UTF-8 characters in a string, which triggers an out-of-bounds read.
Gnu Libidn
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 21
Fedoraproject Fedora 22
10
CVSSv2
CVE-2015-7203
Buffer overflow in the DirectWriteFontInfo::LoadFontFamilyData function in gfx/thebes/gfxDWriteFontList.cpp in Mozilla Firefox prior to 43.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact via a crafted font-family name.
Mozilla Firefox
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
5
CVSSv2
CVE-2015-7207
Mozilla Firefox prior to 43.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote malicious users to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and perform...
Mozilla Firefox
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Fedoraproject Fedora 22
Fedoraproject Fedora 23
5
CVSSv2
CVE-2015-7208
Mozilla Firefox prior to 43.0 stores cookies containing vertical tab characters, which allows remote malicious users to obtain sensitive information by reading HTTP Cookie headers.
Mozilla Firefox
Fedoraproject Fedora 23
Fedoraproject Fedora 22
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »