Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x11 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-12183
xorg-x11-server prior to 1.19.5 was missing length validation in XFIXES extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 9.0
Debian Debian Linux 8.0
X.org Xorg-server
668
VMScore
CVE-2017-12184
xorg-x11-server prior to 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
668
VMScore
CVE-2017-12185
xorg-x11-server prior to 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
668
VMScore
CVE-2017-12186
xorg-x11-server prior to 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
668
VMScore
CVE-2017-12187
xorg-x11-server prior to 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
668
VMScore
CVE-2017-12182
xorg-x11-server prior to 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Debian Debian Linux 8.0
Debian Debian Linux 9.0
X.org Xorg-server
668
VMScore
CVE-2015-7244
The default configuration of the server in MobaXterm prior to 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote malicious users to execute arbitrary commands or obtain sensitive information via X11 ...
Mobatek Mobaxterm
668
VMScore
CVE-2013-7439
Multiple off-by-one errors in the (1) MakeBigReq and (2) SetReqLen macros in include/X11/Xlibint.h in X11R6.x and libX11 prior to 1.6.0 allow remote malicious users to have unspecified impact via a crafted request, which triggers a buffer overflow.
X.org Libx11 1.4.99.902
X.org Libx11 1.4.99.901
X.org Libx11 1.3.99.901
X.org Libx11 1.3.6
X.org Libx11 1.2.2
X.org Libx11 1.2.1
X.org Libx11 1.1.99.1
X.org Libx11 1.1
X.org Libx11 1.4.4
X.org Libx11 1.4.3
X.org Libx11 1.3.5
X.org Libx11 1.3.4
X.org Libx11 1.2
X.org Libx11 1.1.6
X.org Libx11 1.0.1
X.org Libx11 1.5.99.902
X.org Libx11 1.4.2
X.org Libx11 1.4.1
X.org Libx11 1.3.3
X.org Libx11 1.3.2
X.org Libx11 1.1.5
X.org Libx11 1.1.4
668
VMScore
CVE-2014-0250
Multiple integer overflows in client/X11/xf_graphics.c in FreeRDP allow remote malicious users to have an unspecified impact via the width and height to the (1) xf_Pointer_New or (2) xf_Bitmap_Decompress function, which causes an incorrect amount of memory to be allocated.
Freerdp Freerdp 1.0.0
Freerdp Freerdp 1.0.1
Freerdp Freerdp 1.0.2
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
668
VMScore
CVE-2009-3879
Multiple unspecified vulnerabilities in the (1) X11 and (2) Win32GraphicsDevice subsystems in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, have unknown impact and attack vectors, related to failure to clone arrays that are returned by the getConfiguration...
Sun Jre 1.5.0
Sun Jre 1.6.0
Sun Jre
Sun Openjdk
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »