Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.10 vulnerabilities and exploits
(subscribe to this query)
436
VMScore
CVE-2018-10323
The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel up to and including 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.
Linux Linux Kernel
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Debian Debian Linux 9.0
435
VMScore
CVE-2011-5233
Heap-based buffer overflow in IrfanView prior to 4.32 allows remote malicious users to execute arbitrary code via crafted "Rows Per Strip" and "Samples Per Pixel" values in a TIFF image file.
Irfanview Irfanview 4.28
Irfanview Irfanview 4.27
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 4.25
Irfanview Irfanview 4.23
Irfanview Irfanview 3.92
Irfanview Irfanview 3.91
Irfanview Irfanview 4.20
Irfanview Irfanview 4.10
Irfanview Irfanview 3.90
Irfanview Irfanview
Irfanview Irfanview 4.00
Irfanview Irfanview 3.99
Irfanview Irfanview 3.98
1 EDB exploit
419
VMScore
CVE-2019-19054
A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel up to and including 5.3.11 allows malicious users to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b.
Linux Linux Kernel
Canonical Ubuntu Linux 18.04
Fedoraproject Fedora 30
Canonical Ubuntu Linux 14.04
Opensuse Leap 15.1
Fedoraproject Fedora 31
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Aff Baseboard Management Controller -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Fas\\/aff Baseboard Management Controller -
Netapp E-series Santricity Os Controller 11.0
Netapp E-series Santricity Os Controller 11.0.0
Netapp E-series Santricity Os Controller 11.20
Netapp E-series Santricity Os Controller 11.25
Netapp E-series Santricity Os Controller 11.30
410
VMScore
CVE-2016-9084
drivers/vfio/pci/vfio_pci_intrs.c in the Linux kernel up to and including 4.8.11 misuses the kzalloc function, which allows local users to cause a denial of service (integer overflow) or have unspecified other impact by leveraging access to a vfio PCI device file.
Linux Linux Kernel
410
VMScore
CVE-2005-0758
zgrep in gzip prior to 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script.
Gnu Gzip
Canonical Ubuntu Linux 4.10
Canonical Ubuntu Linux 5.04
2 Github repositories
409
VMScore
CVE-2017-5669
The do_shmat function in ipc/shm.c in the Linux kernel up to and including 4.9.12 does not restrict the address calculated by a certain rounding operation, which allows local users to map page zero, and consequently bypass a protection mechanism that exists for the mmap system ca...
Linux Linux Kernel
Debian Debian Linux 8.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
1 Github repository
396
VMScore
CVE-2021-3695
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. This issue has a high complexity to be expl...
Gnu Grub2
Fedoraproject Fedora 36
Redhat Openshift 3.0
Redhat Enterprise Linux 8.0
Redhat Developer Tools 1.0
Redhat Enterprise Linux 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux For Power Little Endian Eus 8.2
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Power Little Endian Eus 8.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.1
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.2
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.6
Redhat Enterprise Linux Server Aus 8.6
Redhat Enterprise Linux Server Tus 8.6
Redhat Enterprise Linux Eus 8.6
396
VMScore
CVE-2021-3697
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some triage over the heap layout and craft an image with a malicious format and payload....
Gnu Grub2
Redhat Openshift 3.0
Redhat Enterprise Linux 8.0
Redhat Developer Tools 1.0
Redhat Enterprise Linux 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Server Tus 8.2
Redhat Enterprise Linux Server Aus 8.2
Redhat Enterprise Linux Server Tus 8.4
Redhat Enterprise Linux Eus 8.4
Redhat Enterprise Linux Server Aus 8.4
Redhat Enterprise Linux For Power Little Endian Eus 8.2
Redhat Enterprise Linux For Power Little Endian 8.0
Redhat Enterprise Linux For Power Little Endian Eus 8.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.1
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.2
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.4
Redhat Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions 8.6
Redhat Enterprise Linux Server Aus 8.6
Redhat Enterprise Linux Server Tus 8.6
Redhat Enterprise Linux Eus 8.6
Redhat Enterprise Linux For Power Little Endian Eus 8.6
392
VMScore
CVE-2010-2023
transports/appendfile.c in Exim prior to 4.72, when a world-writable sticky-bit mail directory is used, does not verify the st_nlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user...
Exim Exim 4.10
Exim Exim 4.20
Exim Exim 4.68
Exim Exim 4.67
Exim Exim 4.60
Exim Exim 4.54
Exim Exim 4.34
Exim Exim 4.41
Exim Exim 4.42
Exim Exim
Exim Exim 4.64
Exim Exim 4.63
Exim Exim 4.51
Exim Exim 4.70
Exim Exim 4.69
Exim Exim 4.62
Exim Exim 4.61
Exim Exim 4.44
Exim Exim 4.43
Exim Exim 4.21
Exim Exim 4.33
Exim Exim 4.50
392
VMScore
CVE-2010-2024
transports/appendfile.c in Exim prior to 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/.
Exim Exim
Exim Exim 4.70
Exim Exim 4.63
Exim Exim 4.62
Exim Exim 4.44
Exim Exim 4.43
Exim Exim 4.22
Exim Exim 4.21
Exim Exim 4.10
Exim Exim 4.20
Exim Exim 4.69
Exim Exim 4.68
Exim Exim 4.61
Exim Exim 4.60
Exim Exim 4.54
Exim Exim 4.34
Exim Exim 4.33
Exim Exim 4.41
Exim Exim 4.42
Exim Exim 4.65
Exim Exim 4.64
Exim Exim 4.51
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »