Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle solaris 11.3 vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2014-1507
Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS prior to 1.2.2 allows malicious users to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageF...
Oracle Solaris 11.3
Mozilla Firefoxos
446
VMScore
CVE-2015-0798
The Reader mode feature in Mozilla Firefox prior to 37.0.1 on Android, and Desktop Firefox pre-release, does not properly handle privileged URLs, which makes it easier for remote malicious users to execute arbitrary JavaScript code with chrome privileges by leveraging the ability...
Oracle Solaris 11.3
Mozilla Firefox
516
VMScore
CVE-2014-1561
Mozilla Firefox prior to 31.0 does not properly restrict use of drag-and-drop events to spoof customization events, which allows remote malicious users to alter the placement of UI icons via crafted JavaScript code that is encountered during (1) page, (2) panel, or (3) toolbar cu...
Mozilla Firefox
Oracle Solaris 11.3
534
VMScore
CVE-2015-7546
The identity service in OpenStack Identity (Keystone) prior to 2015.1.3 (Kilo) and 8.0.x prior to 8.0.2 (Liberty) and keystonemiddleware (formerly python-keystoneclient) prior to 1.5.4 (Kilo) and Liberty prior to 2.3.3 does not properly invalidate authorization tokens when using ...
Openstack Keystonemiddleware
Openstack Keystone
Oracle Solaris 11.3
570
VMScore
CVE-2014-9512
rsync 3.1.1 allows remote malicious users to write to arbitrary files via a symlink attack on a file in the synchronization path.
Samba Rsync 3.1.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Oracle Solaris 11.3
Oracle Solaris 10.0
668
VMScore
CVE-2014-6491
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions and 5.6.20 and previous versions allows remote malicious users to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-650...
Oracle Mysql
Juniper Junos Space
Mariadb Mariadb
Oracle Solaris 11.3
668
VMScore
CVE-2014-6500
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions, and 5.6.20 and previous versions, allows remote malicious users to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6...
Oracle Solaris 11.3
Juniper Junos Space
Mariadb Mariadb
Oracle Mysql
445
VMScore
CVE-2015-3200
mod_auth in lighttpd prior to 1.4.36 allows remote malicious users to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character.
Lighttpd Lighttpd
Hp Virtual Customer Access System
Oracle Solaris 11.3
383
VMScore
CVE-2015-4483
Mozilla Firefox prior to 40.0 allows man-in-the-middle malicious users to bypass a mixed-content protection mechanism via a feed: URL in a POST request.
Oracle Solaris 11.3
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
605
VMScore
CVE-2014-1542
Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox prior to 30.0 allows remote malicious users to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate.
Opensuse Project Opensuse 12.3
Opensuse Opensuse 13.1
Mozilla Firefox
Oracle Solaris 11.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »