Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.10 vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2017-5551
The simple_set_acl function in fs/posix_acl.c in the Linux kernel prior to 4.9.6 preserves the setgid bit during a setxattr call involving a tmpfs filesystem, which allows local users to gain group privileges by leveraging the existence of a setgid program with restrictions on ex...
Linux Linux Kernel
2.6
CVSSv2
CVE-2019-14907
All samba versions 4.9.x prior to 4.9.18, 4.10.x prior to 4.10.12 and 4.11.x prior to 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after a failed character conversion, is printed. Such strings can be p...
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Samba Samba
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Storage 3.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 19.10
Synology Skynas -
Synology Diskstation Manager 6.2
Synology Directory Server -
Synology Router Manager 1.2
Debian Debian Linux 9.0
2.6
CVSSv2
CVE-2005-0591
Firefox prior to 1.0.1 allows remote malicious users to spoof the (1) security and (2) download modal dialog boxes, which could be used to trick users into executing script or downloading and executing a file, aka "Firespoofing."
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.9
Mozilla Firefox 1.0
Mozilla Firefox 0.9.1
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
2.6
CVSSv2
CVE-2005-0587
Firefox prior to 1.0.1 and Mozilla prior to 1.7.6 allows remote malicious web sites to overwrite arbitrary files by tricking the user into downloading a .LNK (link) file twice, which overwrites the file that was referenced in the first .LNK file.
Mozilla Mozilla
Mozilla Firefox
2.6
CVSSv2
CVE-2005-0143
Firefox prior to 1.0 and Mozilla prior to 1.7.5 display the SSL lock icon when an insecure page loads a binary file from a trusted site, which could facilitate phishing attacks.
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.3
Mozilla Mozilla 1.7.5
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.8
Mozilla Firefox 0.9.1
Mozilla Firefox 0.9.2
Mozilla Mozilla 0.9.2.1
Mozilla Mozilla 0.9.3
Mozilla Mozilla 0.9.7
Mozilla Mozilla 0.9.8
Mozilla Mozilla 0.9.9
Mozilla Mozilla 1.1
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.5
Mozilla Firefox 0.8
Mozilla Firefox 0.9
Mozilla Mozilla 0.8
Mozilla Mozilla 0.9.2
2.6
CVSSv2
CVE-2005-0145
Firefox prior to 1.0 does not properly distinguish between user-generated and synthetic click events, which allows remote malicious users to use Javascript to bypass the file download prompt when the user uses the Alt-click feature.
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.10
Mozilla Firefox 0.9
Mozilla Firefox 1.0
Mozilla Firefox 0.9.1
2.1
CVSSv2
CVE-2020-15393
In the Linux kernel 4.4 up to and including 5.7.6, usbtest_disconnect in drivers/usb/misc/usbtest.c has a memory leak, aka CID-28ebeb8db770.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
2.1
CVSSv2
CVE-2020-12655
An issue exists in xfs_agf_verify in fs/xfs/libxfs/xfs_alloc.c in the Linux kernel up to and including 5.6.10. Attackers may trigger a sync of excessive duration via an XFS v5 image with crafted metadata, aka CID-d0c7feaf8767.
Linux Linux Kernel
2.1
CVSSv2
CVE-2019-19073
Memory leaks in drivers/net/wireless/ath/ath9k/htc_hst.c in the Linux kernel up to and including 5.3.11 allow malicious users to cause a denial of service (memory consumption) by triggering wait_for_completion_timeout() failures. This affects the htc_config_pipe_credits() functio...
Linux Linux Kernel
Fedoraproject Fedora 30
Opensuse Leap 15.1
Fedoraproject Fedora 31
2.1
CVSSv2
CVE-2019-18808
A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel up to and including 5.3.9 allows malicious users to cause a denial of service (memory consumption), aka CID-128c66429247.
Linux Linux Kernel
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Opensuse Leap 15.1
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »