Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse project vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2020-17368
Firejail up to and including 0.9.62 mishandles shell metacharacters during use of the --output or --output-stderr option, which may lead to command injection.
Firejail Project Firejail
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Opensuse Leap 15.2
668
VMScore
CVE-2017-18922
It exists that websockets.c in LibVNCServer before 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overflow.
Libvncserver Project Libvncserver
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
Opensuse Leap 15.1
Opensuse Leap 15.2
Fedoraproject Fedora 31
Fedoraproject Fedora 32
Siemens Simatic Itc1500 Firmware
Siemens Simatic Itc1500 Pro Firmware
Siemens Simatic Itc1900 Firmware
Siemens Simatic Itc1900 Pro Firmware
Siemens Simatic Itc2200 Firmware
Siemens Simatic Itc2200 Pro Firmware
668
VMScore
CVE-2020-10683
dom4j prior to 2.0.3 and 2.1.x prior to 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j...
Dom4j Project Dom4j
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Insurance Rules Palette 10.2.0
Oracle Retail Integration Bus 15.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Portal 11.1.1.9.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Utilities Framework 2.2.0.0.0
Oracle Flexcube Core Banking 11.7.0
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 16.0
Oracle Retail Customer Management And Segmentation Foundation 16.0
Oracle Retail Customer Management And Segmentation Foundation 17.0
Oracle Retail Customer Management And Segmentation Foundation 18.0
Oracle Enterprise Data Quality 12.2.1.3.0
Oracle Data Integrator 12.2.1.3.0
Oracle Utilities Framework 4.4.0.0.0
668
VMScore
CVE-2015-8980
The plural form formula in ngettext family of calls in php-gettext prior to 1.0.12 allows remote malicious users to execute arbitrary code.
Php-gettext Project Php-gettext
Opensuse Leap 42.2
Opensuse Leap 42.1
Redhat Enterprise Linux 5.0
Fedoraproject Fedora 24
668
VMScore
CVE-2018-16402
libelf/elf_end.c in elfutils 0.173 allows remote malicious users to cause a denial of service (double free and application crash) or possibly have unspecified other impact because it tries to decompress twice.
Elfutils Project Elfutils 0.173
Debian Debian Linux 9.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 16.04
668
VMScore
CVE-2017-18215
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.
Xv Project Xv 3.10a
Opensuse Leap 42.3
668
VMScore
CVE-2014-9841
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote malicious users to have unspecified impact via unknown vectors, related to "throwing of exceptions."
Opensuse Opensuse 13.2
Opensuse Project Suse Linux Enterprise Server 12.0
Opensuse Project Suse Linux Enterprise Software Development Kit 12.0
Opensuse Project Suse Linux Enterprise Workstation Extension 12.0
Opensuse Project Leap 42.1
Opensuse Project Suse Linux Enterprise Desktop 12.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.10
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Imagemagick Imagemagick 6.8.8-9
668
VMScore
CVE-2014-9843
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote malicious users to have unspecified impact via unknown vectors.
Opensuse Project Suse Linux Enterprise Workstation Extension 12.0
Opensuse Project Suse Linux Enterprise Software Development Kit 12.0
Opensuse Project Leap 42.1
Opensuse Project Suse Linux Enterprise Server 12.0
Opensuse Opensuse 13.2
Opensuse Project Suse Linux Enterprise Desktop 12.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 16.10
Canonical Ubuntu Linux 12.04
Imagemagick Imagemagick 6.8.8-9
668
VMScore
CVE-2014-9846
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote malicious users to have unspecified impact.
Opensuse Project Suse Linux Enterprise Desktop 12.0
Suse Studio Onsite 1.3
Opensuse Project Suse Linux Enterprise Server 12.0
Opensuse Project Suse Linux Enterprise Software Development Kit 11.0
Opensuse Project Suse Linux Enterprise Software Development Kit 12.0
Opensuse Project Suse Linux Enterprise Workstation Extension 12.0
Opensuse Project Suse Linux Enterprise Debuginfo 11.0
Opensuse Project Suse Linux Enterprise Server 11.0
Opensuse Leap 42.2
Opensuse Project Leap 42.1
Opensuse Opensuse 13.2
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.10
Imagemagick Imagemagick 6.8.8-9
668
VMScore
CVE-2014-9847
The jng decoder in ImageMagick 6.8.9.9 allows remote malicious users to have an unspecified impact.
Opensuse Opensuse 13.2
Opensuse Project Suse Linux Enterprise Desktop 12.0
Opensuse Project Suse Linux Enterprise Server 12.0
Opensuse Project Studio Onsite 1.3
Opensuse Project Suse Linux Enterprise Software Development Kit 11.0
Opensuse Project Suse Linux Enterprise Software Development Kit 12.0
Opensuse Project Suse Linux Enterprise Debuginfo 11.0
Opensuse Project Suse Linux Enterprise Server 11.0
Opensuse Project Suse Linux Enterprise Workstation Extension 12.0
Opensuse Project Leap 42.1
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 16.10
Imagemagick Imagemagick 6.8.8-9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »