Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse leap 42.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-7445
convert.c in OpenJPEG prior to 2.1.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via vectors involving the variable s.
Uclouvain Openjpeg
Opensuse Leap 42.1
8.8
CVSSv3
CVE-2016-2329
libavcodec/tiff.c in FFmpeg prior to 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote malicious users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a craft...
Opensuse Leap 42.1
Ffmpeg Ffmpeg
7.8
CVSSv3
CVE-2016-10065
The ReadVIFFImage function in coders/viff.c in ImageMagick prior to 7.0.1-0 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
Opensuse Leap 42.1
NA
CVE-2015-5828
The API in the WebKit Plug-ins component in Apple Safari prior to 9 does not provide notification of an HTTP Redirection (aka 3xx) status code to a plugin, which allows remote malicious users to bypass intended request restrictions via a crafted web site.
Opensuse Leap 42.1
Apple Safari
7.5
CVSSv3
CVE-2015-8874
Stack consumption vulnerability in GD in PHP prior to 5.6.12 allows remote malicious users to cause a denial of service via a crafted imagefilltoborder call.
Opensuse Leap 42.1
Php Php
7.8
CVSSv3
CVE-2016-10064
Buffer overflow in coders/tiff.c in ImageMagick prior to 6.9.5-1 allows remote malicious users to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Imagemagick Imagemagick
Opensuse Leap 42.1
5.3
CVSSv3
CVE-2015-8792
The KaxInternalBlock::ReadData function in libMatroska prior to 1.4.4 allows context-dependent malicious users to obtain sensitive information from process heap memory via crafted EBML lacing, which triggers an invalid memory access.
Matroska Libmatroska
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
8.8
CVSSv3
CVE-2016-2313
auth_login.php in Cacti prior to 0.8.8g allows remote authenticated users who use web authentication to bypass intended access restrictions by logging in as a user not in the cacti database.
Cacti Cacti
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
7.4
CVSSv3
CVE-2016-1942
Mozilla Firefox prior to 44.0 allows user-assisted remote malicious users to spoof a trailing substring in the address bar by leveraging a user's paste of a (1) wyciwyg: URI or (2) resource: URI.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Mozilla Firefox
10
CVSSv3
CVE-2016-1931
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 44.0 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via vectors related to uninitialized memory encounter...
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »