Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2014-8127
LibTIFF 4.0.3 allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted TIFF image to the (1) checkInkNamesString function in tif_dir.c in the thumbnail tool, (2) compresscontig function in tiff2bw.c in the tiff2bw tool, (3) putcontig...
Libtiff Libtiff 4.0.3
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
890
VMScore
CVE-2015-5957
Buffer overflow in the DumpSysVar function in var.c in Remind prior to 3.1.15 allows malicious users to have unspecified impact via a long name.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Roaring Penguin Remind
570
VMScore
CVE-2015-0552
Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote malicious users to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."
Gnome Gcab 0.4
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
383
VMScore
CVE-2016-1943
Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox 43.0.4
Google Android
320
VMScore
CVE-2014-5459
The PEAR_REST class in REST.php in PEAR in PHP up to and including 5.6.0 allows local users to write to arbitrary files via a symlink attack on a (1) rest.cachefile or (2) rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions.
Php Php
Oracle Solaris 11.2
Opensuse Evergreen 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
755
VMScore
CVE-2010-1866
The dechunk filter in PHP 5.3 up to and including 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent malicious users to cause a denial of service (crash) and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparis...
Php Php
Opensuse Opensuse 11.1
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise 11.0
Suse Linux Enterprise 10.0
1 EDB exploit
605
VMScore
CVE-2010-1822
WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3 and Google Chrome prior to 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote malicious users to execute arbitrary code or cause a denial of service (application cras...
Apple Safari
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
445
VMScore
CVE-2015-2141
The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote malicious users to obtain private keys via a timing attack.
Cryptopp Crypto\\+\\+ Library 5.6.2
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
445
VMScore
CVE-2014-3985
The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote malicious users to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.
Miniupnp Project Miniupnp 1.9
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
605
VMScore
CVE-2014-2576
plugins/rssyl/feed.c in Claws Mail prior to 3.10.0 disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fields, which makes it easier for remote malicious users to spoof servers and conduct man-in-the-middle (MITM) attacks.
Claws-mail Claws-mail
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »