Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-1838
The (1) extract_keys_from_pdf and (2) fill_pdf functions in pdf_ext.py in logilab-commons prior to 0.61.0 allows local users to overwrite arbitrary files and possibly have other unspecified impact via a symlink attack on /tmp/toto.fdf.
Opensuse Opensuse 13.1
Opensuse Opensuse 12.3
Logilab Logilab-common
NA
CVE-2014-1839
The Execute class in shellutils in logilab-commons prior to 0.61.0 uses tempfile.mktemp, which allows local users to have an unspecified impact by pre-creating the temporary file.
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Logilab Logilab-common
NA
CVE-2015-0427
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than CVE-2014-6588, CVE-2014-...
Oracle Vm Virtualbox
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
NA
CVE-2014-5459
The PEAR_REST class in REST.php in PEAR in PHP up to and including 5.6.0 allows local users to write to arbitrary files via a symlink attack on a (1) rest.cachefile or (2) rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions.
Php Php
Oracle Solaris 11.2
Opensuse Evergreen 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
4.7
CVSSv3
CVE-2016-1943
Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox 43.0.4
Google Android
9.8
CVSSv3
CVE-2010-1866
The dechunk filter in PHP 5.3 up to and including 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent malicious users to cause a denial of service (crash) and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparis...
Php Php
Opensuse Opensuse 11.1
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise 11.0
Suse Linux Enterprise 10.0
1 EDB exploit
NA
CVE-2013-2027
Jython 2.2.1 uses the current umask to set the privileges of the class cache files, which allows local users to bypass intended access restrictions via unspecified vectors.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Jython Project Jython 2.2.1
NA
CVE-2015-7805
Heap-based buffer overflow in libsndfile 1.0.25 allows remote malicious users to have unspecified impact via the headindex value in the header in an AIFF file.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mega-nerd Libsndfile 1.0.25
1 EDB exploit
NA
CVE-2015-2141
The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote malicious users to obtain private keys via a timing attack.
Cryptopp Crypto\\+\\+ Library 5.6.2
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
8.8
CVSSv3
CVE-2010-1822
WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3 and Google Chrome prior to 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote malicious users to execute arbitrary code or cause a denial of service (application cras...
Apple Safari
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »