Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x x11 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2020-14362
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availabilit...
X.org Xorg-server
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Canonical Ubuntu Linux 14.04
Redhat Enterprise Linux 8.0
4.6
CVSSv2
CVE-2020-14345
A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
X.org X Server
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
4.6
CVSSv2
CVE-2012-0064
xkeyboard-config prior to 2.5 in X.Org prior to 7.6 enables certain XKB debugging functions by default, which allows physically proximate malicious users to bypass an X screen lock via keyboard combinations that break the input grab.
Xkeyboard Config Project Xkeyboard-config 2.0
X X.org X11 1.0
X X.org X11 3.0
X X.org X11 4.0
X X.org X11 5.0
X X.org X11 7.1
X X.org X11 7.2
X X.org X11 7.3
X X.org X11 7.4
X X.org X11 6.5.1
X X.org X11 6.6
X X.org X11 6.7
X X.org X11 6.8
Xkeyboard Config Project Xkeyboard-config
Xkeyboard Config Project Xkeyboard-config 2.2
X X.org X11 6.0
X X.org X11 6.3
X X.org X11 6.8.2
X X.org X11 7.0
X X.org X11 7.5
Xkeyboard Config Project Xkeyboard-config 2.3
Xkeyboard Config Project Xkeyboard-config 2.1
4.6
CVSSv2
CVE-2002-0838
Buffer overflow in (1) gv 3.5.8 and previous versions, (2) gvv 1.0.2 and previous versions, (3) ggv 1.99.90 and previous versions, (4) gnome-gv, and (5) kghostview in kdegraphics 2.2.2 and previous versions, allows malicious users to execute arbitrary code via a malformed (a) PDF...
Gv Gv 2.7.6
Gv Gv 2.7b1
Gv Gv 3.0.4
Gv Gv 3.1.4
Gv Gv 3.5.8
Ggv Ggv 1.0.2
Gv Gv 2.7b2
Gv Gv 2.7b3
Gv Gv 3.1.6
Gv Gv 3.2.4
Ghostview Ghostview 1.4.1
Ghostview Ghostview 1.5
Gv Gv 2.9.4
Gv Gv 3.0.0
Gv Gv 3.4.3
Gv Gv 3.5.2
Gv Gv 3.5.3
Ghostview Ghostview 1.3
Ghostview Ghostview 1.4
Gv Gv 2.7b4
Gv Gv 2.7b5
Gv Gv 3.4.12
2 EDB exploits
4.4
CVSSv2
CVE-2020-25697
A privilege escalation flaw was found in the Xorg-x11-server due to a lack of authentication for X11 clients. This flaw allows an malicious user to take control of an X application by impersonating the server it is expecting to connect to.
X.org X Server -
4.3
CVSSv2
CVE-2020-27746
Slurm prior to 19.05.8 and 20.x prior to 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem.
Schedmd Slurm
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2014-8091
X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) prior to 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote malicious users to cause a denial of ser...
X.org Xorg-server
X.org X11 5.0
4.3
CVSSv2
CVE-2012-6093
The QSslSocket::sslErrors function in Qt prior to 4.6.5, 4.7.x prior to 4.7.6, 4.8.x prior to 4.8.5, when using certain versions of openSSL, uses an "incompatible structure layout" that can read memory from the wrong location, which causes Qt to report an incorrect erro...
Qt Qt 4.6.0
Qt Qt 4.6.3
Qt Qt 4.6.4
Qt Qt 4.6.1
Qt Qt 4.6.2
Qt Qt
Qt Qt 4.7.2
Qt Qt 4.7.3
Qt Qt 4.7.0
Qt Qt 4.7.1
Qt Qt 4.7.5
Qt Qt 4.7.4
Qt Qt 4.7.6
Qt Qt 4.8.2
Qt Qt 4.8.3
Qt Qt 4.8.0
Qt Qt 4.8.1
Qt Qt 4.8.4
Canonical Ubuntu Linux 11.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 12.04
Opensuse Opensuse 11.4
4.3
CVSSv2
CVE-2010-5076
QSslSocket in Qt prior to 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle malicious users to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification ...
Digia Qt
Qt Qt 4.6.3
Qt Qt 4.6.2
Qt Qt 4.3.1
Qt Qt 4.3.0
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.6.0
Qt Qt 4.5.2
Qt Qt 4.4.3
Qt Qt 4.3.2
Qt Qt 4.2.3
Qt Qt 4.2.0
Qt Qt 4.0.1
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.0
Qt Qt 4.4.1
Qt Qt 4.1.0
Qt Qt 4.1.4
Qt Qt 4.1.3
Qt Qt 4.1.2
4.3
CVSSv2
CVE-2009-2700
src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle malicious users to spoof arbitrary SSL servers via a cr...
Qt Qt 4.7.3
Qt Qt 4.7.2
Qt Qt 4.0.0
Qt Qt 4.7.4
Qt Qt 4.3.4
Qt Qt 4.3.5
Qt Qt 4.5.0
Qt Qt 4.5.1
Qt Qt 4.4.2
Qt Qt 4.1.2
Qt Qt 4.1.1
Qt Qt 4.8.2
Qt Qt 4.7.1
Qt Qt 4.2.0
Qt Qt 4.6.0
Qt Qt 4.6.1
Qt Qt 4.4.0
Qt Qt 4.4.3
Qt Qt 4.2.1
Qt Qt 4.0.1
Qt Qt 4.1.3
Qt Qt 4.8.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »