Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 12.1 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2011-3047
The GPU process in Google Chrome prior to 17.0.963.79 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) by leveraging an error in the plug-in loading mechanism.
Google Chrome
Opensuse Opensuse 12.1
7.8
CVSSv2
CVE-2012-0425
LanItems.ycp in save_y2logs in yast2-network prior to 2.24.4 in SUSE YaST writes cleartext Wi-Fi credentials to the y2log log file, which allows context-dependent malicious users to obtain sensitive information by reading the (1) WIRELESS_WPA_PASSWORD or (2) WIRELESS_CLIENT_KEY_P...
Opensuse Opensuse 12.1
7.8
CVSSv2
CVE-2013-4854
The RFC 5011 implementation in rdata.c in ISC BIND 9.7.x and 9.8.x prior to 9.8.5-P2, 9.8.6b1, 9.9.x prior to 9.9.3-P2, and 9.9.4b1, and DNSco BIND 9.9.3-S1 prior to 9.9.3-S1-P1 and 9.9.4-S1b1, allows remote malicious users to cause a denial of service (assertion failure and name...
Isc Bind 9.7.0
Isc Bind 9.7.1
Isc Bind 9.7.2
Isc Bind 9.7.3
Isc Bind 9.7.5
Isc Bind 9.7.6
Isc Bind 9.7.4
Isc Bind 9.7.7
Suse Suse Linux Enterprise Software Development Kit 11.0
Novell Suse Linux 11
Isc Dnsco Bind 9.9.3
Isc Dnsco Bind 9.9.4
Opensuse Opensuse 11.4
Isc Bind 9.9.3
Isc Bind 9.9.0
Isc Bind 9.9.1
Isc Bind 9.9.2
Freebsd Freebsd 9.1
Freebsd Freebsd 8.3
Freebsd Freebsd 8.4
Freebsd Freebsd 9.2
Freebsd Freebsd 8.0
7.8
CVSSv2
CVE-2013-2487
epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x prior to 1.8.6 uses incorrect integer data types, which allows remote malicious users to cause a denial of service (infinite loop) via crafted integer values in a pack...
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
7.5
CVSSv2
CVE-2020-10683
dom4j prior to 2.0.3 and 2.1.x prior to 2.1.3 allows external DTDs and External Entities by default, which might enable XXE attacks. However, there is popular external documentation from OWASP showing how to enable the safe, non-default behavior in any application that uses dom4j...
Dom4j Project Dom4j
Oracle Insurance Policy Administration J2ee 10.2.0
Oracle Insurance Rules Palette 10.2.0
Oracle Retail Integration Bus 15.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Portal 11.1.1.9.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Utilities Framework 2.2.0.0.0
Oracle Flexcube Core Banking 11.7.0
Oracle Business Process Management Suite 12.2.1.3.0
Oracle Endeca Information Discovery Integrator 3.2.0
Oracle Application Testing Suite 13.3.0.1
Oracle Retail Order Broker 15.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 16.0
Oracle Retail Customer Management And Segmentation Foundation 16.0
Oracle Retail Customer Management And Segmentation Foundation 17.0
Oracle Retail Customer Management And Segmentation Foundation 18.0
Oracle Enterprise Data Quality 12.2.1.3.0
Oracle Data Integrator 12.2.1.3.0
Oracle Utilities Framework 4.4.0.0.0
7.5
CVSSv2
CVE-2020-10018
WebKitGTK up to and including 2.26.4 and WPE WebKit up to and including 2.26.4 (which are the versions right prior to 2.28.0) contains a memory corruption issue (use-after-free) that may lead to arbitrary code execution. This issue has been fixed in 2.28.0 with improved memory ha...
Webkitgtk Webkitgtk
Wpewebkit Wpe Webkit
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Opensuse Leap 15.1
7.5
CVSSv2
CVE-2019-17571
Included in Log4j 1.2 is a SocketServer class that is vulnerable to deserialization of untrusted data which can be exploited to remotely execute arbitrary code when combined with a deserialization gadget when listening to untrusted network traffic for log data. This affects Log4j...
Apache Log4j
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.1
Netapp Oncommand Workflow Automation -
Netapp Oncommand System Manager
Oracle Retail Service Backbone 14.1
Oracle Weblogic Server 12.1.3.0.0
Oracle Retail Service Backbone 15.0
Oracle Weblogic Server 10.3.6.0.0
Oracle Weblogic Server 12.2.1.3.0
Oracle Application Testing Suite 13.3.0.1
Oracle Endeca Information Discovery Studio 3.2.0
Oracle Weblogic Server 12.2.1.4.0
Oracle Weblogic Server 14.1.1.0.0
Oracle Rapid Planning 12.1
Oracle Rapid Planning 12.2
Oracle Financial Services Lending And Leasing
Oracle Financial Services Lending And Leasing 12.5.0
Oracle Communications Network Integrity
19 Github repositories
1 Article
7.5
CVSSv2
CVE-2013-1362
Incomplete blacklist vulnerability in nrpc.c in Nagios Remote Plug-In Executor (NRPE) prior to 2.14 might allow remote malicious users to execute arbitrary shell commands via "$()" shell metacharacters, which are processed by bash.
Opensuse Opensuse 12.1
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Nagios Remote Plug In Executor 2.8.1
Nagios Remote Plug In Executor 2.8
Nagios Remote Plug In Executor 2.5
Nagios Remote Plug In Executor 2.4
Nagios Remote Plug In Executor 2.0b1
Nagios Remote Plug In Executor 1.8
Nagios Remote Plug In Executor 2.10
Nagios Remote Plug In Executor 2.9
Nagios Remote Plug In Executor 2.5.2
Nagios Remote Plug In Executor 2.5.1
Nagios Remote Plug In Executor 2.0b3
Nagios Remote Plug In Executor 2.0b2
Nagios Remote Plug In Executor 1.3
Nagios Remote Plug In Executor
Nagios Remote Plug In Executor 2.8b1
Nagios Remote Plug In Executor 2.7.1
Nagios Remote Plug In Executor 2.3
Nagios Remote Plug In Executor 2.0
Nagios Remote Plug In Executor 1.7
1 EDB exploit
7.5
CVSSv2
CVE-2013-0880
Use-after-free vulnerability in Google Chrome prior to 25.0.1364.97 on Windows and Linux, and prior to 25.0.1364.99 on Mac OS X, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors related to databases.
Opensuse Opensuse 12.2
Opensuse Opensuse 12.1
Google Chrome
7.5
CVSSv2
CVE-2013-0891
Integer overflow in Google Chrome prior to 25.0.1364.97 on Windows and Linux, and prior to 25.0.1364.99 on Mac OS X, allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a blob.
Opensuse Opensuse 12.2
Opensuse Opensuse 12.1
Google Chrome
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »