2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-0656 | — | — | 1.1% | Feb 18, 2010 | WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XM... |
| CVE-2010-0655 | — | — | 7.5% | Feb 18, 2010 | Use-after-free vulnerability in Google Chrome before 4.0.249.78 allows user-assisted remote attackers to cause a denial ... |
| CVE-2010-0654 | — | — | 1.9% | Feb 18, 2010 | Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and S... |
| CVE-2010-0653 | — | — | 1.8% | Feb 18, 2010 | Opera before 10.10 permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MI... |
| CVE-2010-0652 | — | — | 4.9% | Feb 18, 2010 | Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an inc... |
| CVE-2010-0651 | — | — | 1.8% | Feb 18, 2010 | WebKit before r52784, as used in Google Chrome before 4.0.249.78 and Apple Safari before 4.0.5, permits cross-origin loa... |
| CVE-2010-0650 | — | — | 2.4% | Feb 18, 2010 | WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrict... |
| CVE-2010-0649 | — | — | 1.3% | Feb 18, 2010 | Integer overflow in the CrossCallParamsEx::CreateFromBuffer function in sandbox/src/crosscall_server.cc in Google Chrome... |
| CVE-2010-0648 | — | — | 1.2% | Feb 18, 2010 | Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a ... |
| CVE-2010-0647 | — | — | 3.5% | Feb 18, 2010 | WebKit before r53525, as used in Google Chrome before 4.0.249.89, allows remote attackers to execute arbitrary code in t... |
| CVE-2010-0646 | — | — | 4.5% | Feb 18, 2010 | Multiple integer signedness errors in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, ... |
| CVE-2010-0645 | — | — | 3.3% | Feb 18, 2010 | Multiple integer overflows in factory.cc in Google V8 before r3560, as used in Google Chrome before 4.0.249.89, allow re... |
| CVE-2010-0644 | — | — | 0.9% | Feb 18, 2010 | Google Chrome before 4.0.249.89, when a SOCKS 5 proxy server is configured, sends DNS queries directly, which allows rem... |
| CVE-2010-0643 | — | — | 1.0% | Feb 18, 2010 | Google Chrome before 4.0.249.89 attempts to make direct connections to web sites when all configured proxy servers are u... |
| CVE-2010-0556 | — | — | 1.0% | Feb 18, 2010 | browser/login/login_prompt.cc in Google Chrome before 4.0.249.89 populates an authentication dialog with credentials tha... |
| CVE-2010-0642 | — | — | 7.5% | Feb 17, 2010 | Cisco Collaboration Server (CCS) 5 allows remote attackers to read the source code of JHTML files via URL encoded charac... |
| CVE-2010-0641 | — | — | 3.2% | Feb 17, 2010 | Cross-site scripting (XSS) vulnerability in webline/html/admin/wcs/LoginPage.jhtml in Cisco Collaboration Server (CCS) 5... |
| CVE-2010-0415 | — | — | 1.8% | Feb 17, 2010 | The do_pages_move function in mm/migrate.c in the Linux kernel before 2.6.33-rc7 does not validate node values, which al... |
| CVE-2010-0307 | — | — | 0.8% | Feb 17, 2010 | The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on the x86_64 platform does not ensu... |
| CVE-2010-0136 | — | — | 8.1% | Feb 16, 2010 | OpenOffice.org (OOo) 2.0.4, 2.4.1, and 3.1.1 does not properly enforce Visual Basic for Applications (VBA) macro securit... |
| CVE-2010-0639 | — | — | 30.6% | Feb 15, 2010 | The htcpHandleTstRequest function in htcp.c in Squid 2.x before 2.6.STABLE24 and 2.7 before 2.7.STABLE8, and htcp.cc in ... |
| CVE-2010-0638 | — | — | 0.6% | Feb 15, 2010 | Cross-site request forgery (CSRF) vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authenticatio... |
| CVE-2010-0623 | — | — | 0.4% | Feb 15, 2010 | The futex_lock_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly manage a certain re... |
| CVE-2010-0622 | — | — | 0.4% | Feb 15, 2010 | The wake_futex_pi function in kernel/futex.c in the Linux kernel before 2.6.33-rc7 does not properly handle certain unlo... |
| CVE-2010-0291 | — | — | 0.4% | Feb 15, 2010 | The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial of service (panic) by calling t... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now