Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse leap 42.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-7445
convert.c in OpenJPEG prior to 2.1.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.
Uclouvain Openjpeg
Opensuse Leap 42.1
NA
CVE-2015-5828
The API in the WebKit Plug-ins component in Apple Safari prior to 9 does not provide notification of an HTTP Redirection (aka 3xx) status code to a plugin, which allows remote malicious users to bypass intended request restrictions via a crafted web site.
Opensuse Leap 42.1
Apple Safari
7.8
CVSSv3
CVE-2016-10065
The ReadVIFFImage function in coders/viff.c in ImageMagick prior to 7.0.1-0 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
Opensuse Leap 42.1
8.8
CVSSv3
CVE-2016-2329
libavcodec/tiff.c in FFmpeg prior to 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote malicious users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a craft...
Opensuse Leap 42.1
Ffmpeg Ffmpeg
5.5
CVSSv3
CVE-2016-9830
The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote malicious users to cause a denial of service (crash) via large dimensions in a jpeg image.
Graphicsmagick Graphicsmagick 1.3.25
Debian Debian Linux 8.0
Opensuse Leap 42.2
Opensuse Leap 42.1
Opensuse Opensuse 13.2
4.9
CVSSv3
CVE-2016-7787
A maliciously crafted command line for kdesu can result in the user only seeing part of the commands that will actually get executed as super user.
Kde Kde-cli-tools -
Opensuse Leap 42.1
Opensuse Opensuse 13.2
6.1
CVSSv3
CVE-2017-5938
Cross-site scripting (XSS) vulnerability in the nav_path function in lib/viewvc.py in ViewVC prior to 1.0.14 and 1.1.x prior to 1.1.26 allows remote malicious users to inject arbitrary web script or HTML via the nav_data name.
Debian Debian Linux 8.0
Opensuse Project Leap 42.1
Opensuse Leap 42.2
Viewvc Viewvc
9.8
CVSSv3
CVE-2016-1944
The Buffer11::NativeBuffer11::map function in ANGLE, as used in Mozilla Firefox prior to 44.0, might allow remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via unknown vectors.
Mozilla Firefox 43.0.4
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
8.8
CVSSv3
CVE-2016-1945
The nsZipArchive function in Mozilla Firefox prior to 44.0 might allow remote malicious users to cause a denial of service or possibly have unspecified other impact by leveraging incorrect use of a pointer during processing of a ZIP archive.
Mozilla Firefox 43.0.4
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2015-8547
The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote malicious users to cause a denial of service (application crash) via the "/op *" command in a query.
Quassel-irc Quassel
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »