Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse project vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-2528
kcleanup.cpp in KDirStat 2.7.3 does not properly quote strings when deleting a directory, which allows remote malicious users to execute arbitrary commands via a ' (single quote) character in the directory name, a different vulnerability than CVE-2014-2527.
Kdirstat Project Kdirstat 2.7.3
Opensuse Opensuse 13.1
NA
CVE-2015-4625
Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) prior to 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.
Fedoraproject Fedora 21
Opensuse Opensuse 13.2
Fedoraproject Fedora 22
Opensuse Opensuse 13.1
Polkit Project Polkit
NA
CVE-2014-1499
Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Mozilla Seamonkey
Oracle Solaris 11.3
Mozilla Firefox
Opensuse Project Opensuse 11.4
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
NA
CVE-2014-1494
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.
Mozilla Seamonkey
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Software Development Kit 11
Oracle Solaris 11.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Opensuse Project Opensuse 11.4
Mozilla Firefox
NA
CVE-2014-1498
The crypto.generateCRMFRequest method in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 does not properly validate a certain key type, which allows remote malicious users to cause a denial of service (application crash) via vectors that trigger generation of a key that...
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Software Development Kit 11
Oracle Solaris 11.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Opensuse Project Opensuse 11.4
Mozilla Seamonkey
Mozilla Firefox
NA
CVE-2014-1500
Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to cause a denial of service (resource consumption and application hang) via onbeforeunload events that trigger background JavaScript execution.
Opensuse Project Opensuse 11.4
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Oracle Solaris 11.3
Mozilla Firefox
Mozilla Seamonkey
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
NA
CVE-2014-1502
The (1) WebGL.compressedTexImage2D and (2) WebGL.compressedTexSubImage2D functions in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to bypass the Same Origin Policy and render content in a different domain via unspecified vectors.
Opensuse Project Opensuse 12.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 11.4
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Oracle Solaris 11.3
Mozilla Firefox
Mozilla Seamonkey
NA
CVE-2012-2328
internal/cimxml/sax/NodeFactory.java in Standards-Based Linux Instrumentation for Manageability (SBLIM) Common Information Model (CIM) Client (aka sblim-cim-client2) prior to 2.1.12 computes hash values without restricting the ability to trigger hash collisions predictably, which...
Opensuse Opensuse 11.4
Opensuse Opensuse 12.2
Opensuse Opensuse 12.1
Standards Based Linux Instrumentation Project Standards-based Linux Common Information Model Client
7.5
CVSSv3
CVE-2017-6594
The transit path validation code in Heimdal prior to 7.3 might allow malicious users to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets.
Heimdal Project Heimdal
Opensuse Leap 42.2
Opensuse Leap 42.3
2.7
CVSSv3
CVE-2017-5930
The AliasHandler component in PostfixAdmin prior to 3.0.2 allows remote authenticated domain admins to delete protected aliases via the delete parameter to delete.php, involving a missing permission check.
Opensuse Leap 42.1
Opensuse Leap 42.2
Postfixadmin Project Postfixadmin
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »