2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3782 | HIGH | 8.8 | 1.1% | Jan 2, 2020 | obs-server before 1.7.7 allows logins by 'unconfirmed' accounts due to a bug in the REST api implementation. |
| CVE-2010-5108 | HIGH | 7.5 | 1.3% | Nov 13, 2019 | Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker... |
| CVE-2010-4664 | HIGH | 8.8 | 1.2% | Nov 13, 2019 | In ConsoleKit before 0.4.2, an intended security policy restriction bypass was found. This flaw allows an authenticated ... |
| CVE-2010-4661 | HIGH | 7.8 | 0.4% | Nov 13, 2019 | udisks before 1.0.3 allows a local user to load arbitrary Linux kernel modules. |
| CVE-2010-4657 | HIGH | 7.5 | 1.5% | Nov 13, 2019 | PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by ... |
| CVE-2010-4654 | HIGH | 7.8 | 1.2% | Nov 13, 2019 | poppler before 0.16.3 has malformed commands that may cause corruption of the internal stack. |
| CVE-2010-3844 | HIGH | 8.8 | 1.4% | Nov 12, 2019 | An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-size... |
| CVE-2010-3305 | HIGH | 8.8 | 1.0% | Nov 12, 2019 | Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin pass... |
| CVE-2010-2488 | HIGH | 7.5 | 2.4% | Nov 12, 2019 | NULL pointer dereference vulnerability in ZNC before 0.092 caused by traffic stats when there are unauthenticated connec... |
| CVE-2010-2450 | HIGH | 7.5 | 1.2% | Nov 7, 2019 | The keygen.sh script in Shibboleth SP 2.0 (located in /usr/local/etc/shibboleth by default) uses OpenSSL to create a DES... |
| CVE-2010-2243 | HIGH | 7.5 | 2.5% | Nov 7, 2019 | A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERIC_TIME systems ... |
| CVE-2010-2247 | HIGH | 7.5 | 1.3% | Nov 6, 2019 | makepasswd 1.10 default settings generate insecure passwords |
| CVE-2010-2222 | HIGH | 7.5 | 1.3% | Nov 5, 2019 | The _ger_parse_control function in Red Hat Directory Server 8 and the 389 Directory Server allows attackers to cause a d... |
| CVE-2010-3668 | HIGH | 7.5 | 1.3% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows Header Injection in the secur... |
| CVE-2010-3663 | HIGH | 8.8 | 2.4% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 contains an insecure default value o... |
| CVE-2010-3662 | HIGH | 8.8 | 1.2% | Nov 4, 2019 | TYPO3 before 4.1.14, 4.2.x before 4.2.13, 4.3.x before 4.3.4 and 4.4.x before 4.4.1 allows SQL Injection on the backend. |
| CVE-2010-0747 | HIGH | 7.8 | 0.4% | Oct 30, 2019 | drbd8 allows local users to bypass intended restrictions for certain actions via netlink packets, similar to CVE-2009-37... |
| CVE-2010-0737 | HIGH | 8 | 0.5% | Oct 30, 2019 | A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permiss... |
| CVE-2010-2064 | HIGH | 7.1 | 0.4% | Oct 29, 2019 | rpcbind 0.2.0 allows local users to write to arbitrary files or gain privileges via a symlink attack on (1) /tmp/portmap... |
| CVE-2010-2061 | HIGH | 7.8 | 0.4% | Oct 29, 2019 | rpcbind 0.2.0 does not properly validate (1) /tmp/portmap.xdr and (2) /tmp/rpcbind.xdr, which can be created by an attac... |
| CVE-2010-1678 | HIGH | 7.5 | 2.2% | Oct 29, 2019 | Mapserver 5.2, 5.4 and 5.6 before 5.6.5-2 improperly validates symbol index values during Mapfile parsing. |
| CVE-2010-4241 | HIGH | 8.8 | 0.8% | Oct 28, 2019 | Tiki Wiki CMS Groupware 5.2 has CSRF |
| CVE-2010-5335 | HIGH | 7.5 | 2.8% | Oct 11, 2019 | IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of confidential data of... |
| CVE-2010-5334 | HIGH | 7.5 | 2.6% | Oct 11, 2019 | IceWarp Webclient before 10.2.1 has a directory traversal vulnerability. This can result in loss of confidential data of... |
| CVE-2010-5331 | HIGH | 7.8 | 0.4% | Jul 27, 2019 | In the Linux kernel before 2.6.34, a range check issue in drivers/gpu/drm/radeon/atombios.c could cause an off by one (b... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now