Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse leap 42.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2016-4346
Integer overflow in the str_pad function in ext/standard/string.c in PHP prior to 7.0.4 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a long string, leading to a heap-based buffer overflow.
Php Php
Opensuse Leap 42.1
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2016-5301
The parse_chunk_header function in libtorrent prior to 1.1.1 allows remote malicious users to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Arvidn Libtorrent
1 Github repository
7.5
CVSSv3
CVE-2014-9773
modules/chanserv/flags.c in Atheme prior to 7.2.7 allows remote malicious users to modify the Anope FLAGS behavior by registering and dropping the (1) LIST, (2) CLEAR, or (3) MODIFY keyword nicks.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Atheme Atheme
5.5
CVSSv3
CVE-2016-6265
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote malicious users to cause a denial of service (crash) via a crafted PDF file.
Artifex Mupdf
Opensuse Leap 42.1
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2013-4118
FreeRDP prior to 1.1.0-beta1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
Freerdp Freerdp
Opensuse Opensuse 13.2
Opensuse Leap 42.1
NA
CVE-2016-0594
Unspecified vulnerability in Oracle MySQL 5.6.21 and previous versions allows remote authenticated users to affect availability via vectors related to DML.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Oracle Mysql
6.8
CVSSv3
CVE-2016-6172
PowerDNS (aka pdns) Authoritative Server prior to 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Powerdns Authoritative Server
8.4
CVSSv3
CVE-2016-3100
kinit in KDE Frameworks prior to 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Kde Kde Frameworks
8.8
CVSSv3
CVE-2016-1000104
A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.
Apache Mod Fcgid
Opensuse Leap 42.1
Opensuse Opensuse 13.2
NA
CVE-2015-5828
The API in the WebKit Plug-ins component in Apple Safari prior to 9 does not provide notification of an HTTP Redirection (aka 3xx) status code to a plugin, which allows remote malicious users to bypass intended request restrictions via a crafted web site.
Opensuse Leap 42.1
Apple Safari
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »