Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-0552
Directory traversal vulnerability in the gcab_folder_extract function in libgcab/gcab-folder.c in gcab 0.4 allows remote malicious users to write to arbitrary files via crafted path in a CAB file, as demonstrated by "\tmp\moo."
Gnome Gcab 0.4
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2013-2190
The translate_hierarchy_event function in x11/clutter-device-manager-xi2.c in Clutter, when resuming the system, does not properly handle XIQueryDevice errors when a device has "disappeared," which causes the gnome-shell to crash and allows physically proximate maliciou...
Clutter Project Clutter -
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
NA
CVE-2013-0913
Integer overflow in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the i915 driver in the Direct Rendering Manager (DRM) subsystem in the Linux kernel up to and including 3.8.3, as used in Google Chrome OS prior to 25.0.1364.173 and other products, allows local users to cause a de...
Linux Linux Kernel
Opensuse Opensuse 11.4
Opensuse Opensuse 12.1
NA
CVE-2014-5459
The PEAR_REST class in REST.php in PEAR in PHP up to and including 5.6.0 allows local users to write to arbitrary files via a symlink attack on a (1) rest.cachefile or (2) rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions.
Php Php
Oracle Solaris 11.2
Opensuse Evergreen 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
4.7
CVSSv3
CVE-2016-1943
Mozilla Firefox prior to 44.0 on Android allows remote malicious users to spoof the address bar via the scrollTo method.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox 43.0.4
Google Android
9.8
CVSSv3
CVE-2010-1866
The dechunk filter in PHP 5.3 up to and including 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent malicious users to cause a denial of service (crash) and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparis...
Php Php
Opensuse Opensuse 11.1
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
Suse Linux Enterprise 11.0
Suse Linux Enterprise 10.0
1 EDB exploit
NA
CVE-2014-9640
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted raw file.
Xiph Vorbis-tools 1.4.0
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
8.8
CVSSv3
CVE-2010-1822
WebKit, as used in Apple Safari prior to 4.1.3 and 5.0.x prior to 5.0.3 and Google Chrome prior to 6.0.472.62, does not properly perform a cast of an unspecified variable, which allows remote malicious users to execute arbitrary code or cause a denial of service (application cras...
Apple Safari
Google Chrome
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
NA
CVE-2014-3985
The getHTTPResponse function in miniwget.c in MiniUPnP 1.9 allows remote malicious users to cause a denial of service (crash) via crafted headers that trigger an out-of-bounds read.
Miniupnp Project Miniupnp 1.9
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
NA
CVE-2014-2576
plugins/rssyl/feed.c in Claws Mail prior to 3.10.0 disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fields, which makes it easier for remote malicious users to spoof servers and conduct man-in-the-middle (MITM) attacks.
Claws-mail Claws-mail
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »