Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse leap 42.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2013-4118
FreeRDP prior to 1.1.0-beta1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
Freerdp Freerdp
Opensuse Opensuse 13.2
Opensuse Leap 42.1
7.5
CVSSv2
CVE-2016-4346
Integer overflow in the str_pad function in ext/standard/string.c in PHP prior to 7.0.4 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a long string, leading to a heap-based buffer overflow.
Php Php
Opensuse Leap 42.1
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2014-9773
modules/chanserv/flags.c in Atheme prior to 7.2.7 allows remote malicious users to modify the Anope FLAGS behavior by registering and dropping the (1) LIST, (2) CLEAR, or (3) MODIFY keyword nicks.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Atheme Atheme
4.3
CVSSv2
CVE-2016-0594
Unspecified vulnerability in Oracle MySQL 5.6.21 and previous versions allows remote authenticated users to affect availability via vectors related to DML.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Oracle Mysql
4.3
CVSSv2
CVE-2016-6265
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote malicious users to cause a denial of service (crash) via a crafted PDF file.
Artifex Mupdf
Opensuse Leap 42.1
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2016-5301
The parse_chunk_header function in libtorrent prior to 1.1.1 allows remote malicious users to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Arvidn Libtorrent
1 Github repository
6.5
CVSSv2
CVE-2016-1000104
A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.
Apache Mod Fcgid
Opensuse Leap 42.1
Opensuse Opensuse 13.2
2.1
CVSSv2
CVE-2016-3100
kinit in KDE Frameworks prior to 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Kde Kde Frameworks
7.1
CVSSv2
CVE-2016-6172
PowerDNS (aka pdns) Authoritative Server prior to 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Powerdns Authoritative Server
6.8
CVSSv2
CVE-2016-4069
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail prior to 1.1.5 allows remote malicious users to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.
Opensuse Leap 42.1
Roundcube Webmail
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »