Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 13.2 vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2015-8842
tmpfiles.d/systemd.conf in systemd prior to 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file.
Opensuse Opensuse 13.2
2.1
CVSSv2
CVE-2014-9770
tmpfiles.d/systemd.conf in systemd prior to 214 uses weak permissions for journal files under (1) /run/log/journal/%m and (2) /var/log/journal/%m, which allows local users to obtain sensitive information by reading these files.
Opensuse Opensuse 13.2
4.4
CVSSv2
CVE-2014-9065
common/spinlock.c in Xen 4.4.x and previous versions does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service (write denial or NMI watchdog timeout and host crash) via a large number of read requests, a different vulnerability...
Xen Xen
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
7.5
CVSSv2
CVE-2014-9462
The _validaterepo function in sshpeer in Mercurial prior to 3.2.4 allows remote malicious users to execute arbitrary commands via a crafted repository name in a clone command.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mercurial Mercurial
7.1
CVSSv2
CVE-2014-8643
Mozilla Firefox prior to 35.0 on Windows allows remote malicious users to bypass the Gecko Media Plugin (GMP) sandbox protection mechanism by leveraging access to the GMP process, as demonstrated by the OpenH264 plugin's process.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
1 Article
7.5
CVSSv2
CVE-2015-3335
The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc in Google Chrome prior to 42.0.2311.90 does not have RLIMIT_AS and RLIMIT_DATA limits for Native Client (aka NaCl) processes, which might make it easier for remote ma...
Google Chrome
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
3.6
CVSSv2
CVE-2015-4156
GNU Parallel prior to 20150522 (Nepal), when using (1) --cat or (2) --fifo with --sshlogin, allows local users to write to arbitrary files via a symlink attack on a temporary file.
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Gnu Parallel
4.3
CVSSv2
CVE-2015-1275
Cross-site scripting (XSS) vulnerability in org/chromium/chrome/browser/UrlUtilities.java in Google Chrome prior to 44.0.2403.89 on Android allows remote malicious users to inject arbitrary web script or HTML via a crafted intent: URL, as demonstrated by a trailing alert(document...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Google Chrome
7.5
CVSSv2
CVE-2015-2712
The asm.js implementation in Mozilla Firefox prior to 38.0 does not properly determine heap lengths during identification of cases in which bounds checking may be safely skipped, which allows remote malicious users to trigger out-of-bounds write operations and possibly execute ar...
Mozilla Firefox
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
4.3
CVSSv2
CVE-2015-2711
Mozilla Firefox prior to 38.0 does not recognize a referrer policy delivered by a referrer META element in cases of context-menu navigation and middle-click navigation, which allows remote malicious users to obtain sensitive information by reading web-server Referer logs that con...
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Mozilla Firefox
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »