Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle solaris 11.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1507
Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS prior to 1.2.2 allows malicious users to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageF...
Oracle Solaris 11.3
Mozilla Firefoxos
NA
CVE-2015-0798
The Reader mode feature in Mozilla Firefox prior to 37.0.1 on Android, and Desktop Firefox pre-release, does not properly handle privileged URLs, which makes it easier for remote malicious users to execute arbitrary JavaScript code with chrome privileges by leveraging the ability...
Oracle Solaris 11.3
Mozilla Firefox
NA
CVE-2014-1561
Mozilla Firefox prior to 31.0 does not properly restrict use of drag-and-drop events to spoof customization events, which allows remote malicious users to alter the placement of UI icons via crafted JavaScript code that is encountered during (1) page, (2) panel, or (3) toolbar cu...
Mozilla Firefox
Oracle Solaris 11.3
7.5
CVSSv3
CVE-2015-7546
The identity service in OpenStack Identity (Keystone) prior to 2015.1.3 (Kilo) and 8.0.x prior to 8.0.2 (Liberty) and keystonemiddleware (formerly python-keystoneclient) prior to 1.5.4 (Kilo) and Liberty prior to 2.3.3 does not properly invalidate authorization tokens when using ...
Openstack Keystonemiddleware
Openstack Keystone
Oracle Solaris 11.3
NA
CVE-2014-9512
rsync 3.1.1 allows remote malicious users to write to arbitrary files via a symlink attack on a file in the synchronization path.
Samba Rsync 3.1.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Oracle Solaris 11.3
Oracle Solaris 10.0
NA
CVE-2014-6491
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions and 5.6.20 and previous versions allows remote malicious users to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-650...
Oracle Mysql
Juniper Junos Space
Mariadb Mariadb
Oracle Solaris 11.3
NA
CVE-2014-6500
Unspecified vulnerability in Oracle MySQL Server 5.5.39 and previous versions, and 5.6.20 and previous versions, allows remote malicious users to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6...
Oracle Solaris 11.3
Juniper Junos Space
Mariadb Mariadb
Oracle Mysql
7.5
CVSSv3
CVE-2015-3200
mod_auth in lighttpd prior to 1.4.36 allows remote malicious users to inject arbitrary log entries via a basic HTTP authentication string without a colon character, as demonstrated by a string containing a NULL and new line character.
Lighttpd Lighttpd
Hp Virtual Customer Access System
Oracle Solaris 11.3
NA
CVE-2015-4483
Mozilla Firefox prior to 40.0 allows man-in-the-middle malicious users to bypass a mixed-content protection mechanism via a feed: URL in a POST request.
Oracle Solaris 11.3
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2014-1542
Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox prior to 30.0 allows remote malicious users to execute arbitrary code via vectors related to a crafted AudioBuffer channel count and sample rate.
Opensuse Project Opensuse 12.3
Opensuse Opensuse 13.1
Mozilla Firefox
Oracle Solaris 11.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »