Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x11 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv2
CVE-2015-3808
The dissect_lbmr_pser function in epan/dissectors/packet-lbmr.c in the LBMR dissector in Wireshark 1.12.x prior to 1.12.5 does not reject a zero length, which allows remote malicious users to cause a denial of service (infinite loop) via a crafted packet.
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.12.3
7.8
CVSSv2
CVE-2015-3812
Multiple memory leaks in the x11_init_protocol function in epan/dissectors/packet-x11.c in the X11 dissector in Wireshark 1.10.x prior to 1.10.14 and 1.12.x prior to 1.12.5 allow remote malicious users to cause a denial of service (memory consumption) via a crafted packet.
Oracle Solaris 11.2
Oracle Linux 7
Wireshark Wireshark 1.12.4
Wireshark Wireshark 1.10.8
Wireshark Wireshark 1.12.0
Wireshark Wireshark 1.10.6
Wireshark Wireshark 1.10.9
Wireshark Wireshark 1.10.13
Wireshark Wireshark 1.10.12
Wireshark Wireshark 1.10.10
Wireshark Wireshark 1.10.0
Wireshark Wireshark 1.12.2
Wireshark Wireshark 1.10.3
Wireshark Wireshark 1.10.2
Wireshark Wireshark 1.10.1
Wireshark Wireshark 1.12.1
Wireshark Wireshark 1.10.7
Wireshark Wireshark 1.10.4
Wireshark Wireshark 1.12.3
Wireshark Wireshark 1.10.5
Wireshark Wireshark 1.10.11
7.8
CVSSv2
CVE-2014-0254
The IPv6 implementation in Microsoft Windows 8, Windows Server 2012, and Windows RT does not properly validate packets, which allows remote malicious users to cause a denial of service (system hang) via crafted ICMPv6 Router Advertisement packets, aka "TCP/IP Version 6 (IPv6...
Microsoft Windows Rt -
Microsoft Windows Server 2012 -
Microsoft Windows 8 -
7.8
CVSSv2
CVE-2008-0166
OpenSSL 0.9.8c-1 up to versions prior to 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote malicious users to conduct brute force guessing attacks against cryptographic keys.
Openssl Openssl
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
3 EDB exploits
22 Github repositories
7.5
CVSSv2
CVE-2021-31535
LookupCol.c in X.Org X through X11R7.7 and libX11 prior to 1.7.1 might allow remote malicious users to execute arbitrary code. The libX11 XLookupColor request (intended for server-side color lookup) contains a flaw allowing a client to send color-name requests with a name longer ...
X.org X Window System
X.org Libx11
Fedoraproject Fedora 33
6 Github repositories
7.5
CVSSv2
CVE-2011-0703
In gksu-polkit prior to 0.0.3, the source file for xauth may contain arbitrary commands that may allow an malicious user to overtake an administrator X11 session.
Gksu-polkit Project Gksu-polkit
Debian Debian Linux 6.0
7.5
CVSSv2
CVE-2019-16650
On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same socket file descriptor number. In opportunistic circumstances, an attacker can simply connect to the virtual media service, and then connect virt...
Supermicro X11dai-n Firmware 1.71.5
Supermicro X11dac Firmware 1.71.5
Supermicro X11dph-tq Firmware 1.71.5
Supermicro X11dph-i Firmware 1.71.5
Supermicro X11dph-t Firmware 1.71.5
Supermicro X11dps-re Firmware 1.71.5
Supermicro X11dsf-e Firmware 1.71.5
Supermicro X11dsn-ts Firmware 1.71.5
Supermicro X11dsn-tsq Firmware 1.71.5
Supermicro X11dsc\\+ Firmware 1.74
Supermicro X11ddw-nt Firmware 1.71.5
Supermicro X11ddw-l Firmware 1.71.5
Supermicro X11dgq Firmware 1.71.5
Supermicro X11dpff-sn Firmware 1.71.5
Supermicro X11dpfr-sn Firmware 1.71.5
Supermicro X11dpfr-s Firmware 1.71.5
Supermicro X11dpt-ps Firmware 1.71.5
Supermicro X11dpt-b Firmware 1.71.5
Supermicro X11dpt-bh Firmware 1.71.5
Supermicro X11dpt-l Firmware 3.74
Supermicro X11dpu Firmware 1.71.5
Supermicro X11dpu-v Firmware 1.71.5
7.5
CVSSv2
CVE-2017-12176
xorg-x11-server prior to 1.19.5 was missing extra length validation in ProcEstablishConnection function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
7.5
CVSSv2
CVE-2017-12178
xorg-x11-server prior to 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 9.0
Debian Debian Linux 8.0
X.org Xorg-server
7.5
CVSSv2
CVE-2017-12179
xorg-x11-server prior to 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 9.0
Debian Debian Linux 8.0
X.org Xorg-server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »