Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2016-1937
The protocol-handler dialog in Mozilla Firefox prior to 44.0 allows remote malicious users to conduct clickjacking attacks via a crafted web site that triggers a single-click action in a situation where a double-click action was intended.
Mozilla Firefox
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
5.3
CVSSv3
CVE-2016-1939
Mozilla Firefox prior to 44.0 stores cookies with names containing vertical tab characters, which allows remote malicious users to obtain sensitive information by reading HTTP Cookie headers. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-7208.
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Mozilla Firefox
9.8
CVSSv3
CVE-2016-1946
The MoofParser::Metadata function in binding/MoofParser.cpp in libstagefright in Mozilla Firefox prior to 44.0 does not limit the size of read operations, which might allow remote malicious users to cause a denial of service (integer overflow and buffer overflow) or possibly have...
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
5.3
CVSSv3
CVE-2015-8792
The KaxInternalBlock::ReadData function in libMatroska prior to 1.4.4 allows context-dependent malicious users to obtain sensitive information from process heap memory via crafted EBML lacing, which triggers an invalid memory access.
Matroska Libmatroska
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
7.5
CVSSv3
CVE-2015-8547
The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote malicious users to cause a denial of service (application crash) via the "/op *" command in a query.
Quassel-irc Quassel
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
NA
CVE-2015-5309
Integer overflow in the terminal emulator in PuTTY prior to 0.66 allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via an ECH (erase characters) escape sequence with a large parameter value, which triggers a buffer u...
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Simon Tatham Putty
9.8
CVSSv3
CVE-2016-1944
The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox prior to 44.0, might allow remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
Mozilla Firefox 43.0.4
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
8.8
CVSSv3
CVE-2016-1945
The nsZipArchive function in Mozilla Firefox prior to 44.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer during processing of a ZIP archive.
Mozilla Firefox 43.0.4
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
6.5
CVSSv3
CVE-2016-5316
Out-of-bounds read in the PixarLogCleanup function in tif_pixarlog.c in libtiff 4.0.6 and previous versions allows remote malicious users to crash the application by sending a crafted TIFF image to the rgb2ycbcr tool.
Libtiff Libtiff
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Opensuse Project Leap 42.1
8.8
CVSSv3
CVE-2014-0158
Heap-based buffer overflow in the JPEG2000 image tile decoder in OpenJPEG prior to 1.5.2 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file because of incorrect j2k_decode, j2k_read_eoc, and ...
Uclouvain Openjpeg
Opensuse Opensuse 13.1
Opensuse Opensuse 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »