Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse leap 42.1 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2016-6265
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote malicious users to cause a denial of service (crash) via a crafted PDF file.
Artifex Mupdf
Opensuse Leap 42.1
Opensuse Opensuse 13.2
445
VMScore
CVE-2016-5301
The parse_chunk_header function in libtorrent prior to 1.1.1 allows remote malicious users to cause a denial of service (crash) via a crafted (1) HTTP response or possibly a (2) UPnP broadcast.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Arvidn Libtorrent
1 Github repository
445
VMScore
CVE-2014-9773
modules/chanserv/flags.c in Atheme prior to 7.2.7 allows remote malicious users to modify the Anope FLAGS behavior by registering and dropping the (1) LIST, (2) CLEAR, or (3) MODIFY keyword nicks.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Atheme Atheme
445
VMScore
CVE-2013-4118
FreeRDP prior to 1.1.0-beta1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
Freerdp Freerdp
Opensuse Opensuse 13.2
Opensuse Leap 42.1
668
VMScore
CVE-2016-4346
Integer overflow in the str_pad function in ext/standard/string.c in PHP prior to 7.0.4 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a long string, leading to a heap-based buffer overflow.
Php Php
Opensuse Leap 42.1
Opensuse Opensuse 13.2
383
VMScore
CVE-2016-0594
Unspecified vulnerability in Oracle MySQL 5.6.21 and previous versions allows remote authenticated users to affect availability via vectors related to DML.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Oracle Mysql
578
VMScore
CVE-2016-1000104
A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.
Apache Mod Fcgid
Opensuse Leap 42.1
Opensuse Opensuse 13.2
187
VMScore
CVE-2016-3100
kinit in KDE Frameworks prior to 5.23.0 uses weak permissions (644) for /tmp/xauth-xxx-_y, which allows local users to obtain X11 cookies of other users and consequently capture keystrokes and possibly gain privileges by reading the file.
Opensuse Opensuse 13.2
Opensuse Leap 42.1
Kde Kde Frameworks
632
VMScore
CVE-2016-6172
PowerDNS (aka pdns) Authoritative Server prior to 4.0.1 allows remote primary DNS servers to cause a denial of service (memory exhaustion and secondary DNS server crash) via a large (1) AXFR or (2) IXFR response.
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Powerdns Authoritative Server
605
VMScore
CVE-2016-4069
Cross-site request forgery (CSRF) vulnerability in Roundcube Webmail prior to 1.1.5 allows remote malicious users to hijack the authentication of users for requests that download attachments and cause a denial of service (disk consumption) via unspecified vectors.
Opensuse Leap 42.1
Roundcube Webmail
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »