2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3328 | HIGH | 8.8 | 31.9% | Oct 13, 2010 | Use-after-free vulnerability in the CAttrArray::PrivateFind function in mshtml.dll in Microsoft Internet Explorer 6 thro... |
| CVE-2010-1883 | HIGH | 7.8 | 23.3% | Oct 13, 2010 | Integer overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2... |
| CVE-2010-3730 | HIGH | 8.8 | 0.8% | Oct 5, 2010 | Google Chrome before 6.0.472.62 does not properly use information about the origin of a document to manage properties, w... |
| CVE-2010-1822 | HIGH | 8.8 | 2.2% | Oct 4, 2010 | WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not proper... |
| CVE-2010-2943 | HIGH | 8.1 | 17.0% | Sep 30, 2010 | The xfs implementation in the Linux kernel before 2.6.35 does not look up inode allocation btrees before reading inode b... |
| CVE-2010-2537 | HIGH | 7.1 | 0.4% | Sep 30, 2010 | The btrfs_ioctl_clone function in fs/btrfs/ioctl.c in the Linux kernel before 2.6.35 allows local users to overwrite an ... |
| CVE-2010-3081 | HIGH | 7.8 | 3.5% | Sep 24, 2010 | The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit... |
| CVE-2010-1773 | HIGH | 8.8 | 2.1% | Sep 24, 2010 | Off-by-one error in the toAlphabetic function in rendering/RenderListMarker.cpp in WebCore in WebKit before r59950, as u... |
| CVE-2010-1772 | HIGH | 8.8 | 2.0% | Sep 24, 2010 | Use-after-free vulnerability in page/Geolocation.cpp in WebCore in WebKit before r59859, as used in Google Chrome before... |
| CVE-2010-0820 | HIGH | 8.8 | 14.4% | Sep 15, 2010 | Heap-based buffer overflow in the Local Security Authority Subsystem Service (LSASS), as used in Active Directory in Mic... |
| CVE-2010-3322 | HIGH | 8.8 | 1.0% | Sep 14, 2010 | The XML parser in Splunk 4.0.0 through 4.1.4 allows remote authenticated users to obtain sensitive information and gain ... |
| CVE-2010-2883 | HIGH | 7.3 | 82.5% | Sep 9, 2010 | Stack-based buffer overflow in CoolType.dll in Adobe Reader and Acrobat 9.x before 9.4, and 8.x before 8.2.5 on Windows ... |
| CVE-2010-2960 | HIGH | 7.8 | 0.5% | Sep 8, 2010 | The keyctl_session_to_parent function in security/keys/keyctl.c in the Linux kernel 2.6.35.4 and earlier expects that a ... |
| CVE-2010-2798 | HIGH | 7.8 | 0.4% | Sep 8, 2010 | The gfs2_dirent_find_space function in fs/gfs2/dir.c in the Linux kernel before 2.6.35 uses an incorrect size value in c... |
| CVE-2010-2524 | HIGH | 7.8 | 0.4% | Sep 8, 2010 | The DNS resolution functionality in the CIFS implementation in the Linux kernel before 2.6.35, when CONFIG_CIFS_DFS_UPCA... |
| CVE-2010-2492 | HIGH | 7.8 | 0.4% | Sep 8, 2010 | Buffer overflow in the ecryptfs_uid_hash macro in fs/ecryptfs/messaging.c in the eCryptfs subsystem in the Linux kernel ... |
| CVE-2010-3190 | HIGH | 7.8 | 9.0% | Aug 31, 2010 | Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Microsoft Visual Studio .NET 2003... |
| CVE-2010-3035 | HIGH | 7.5 | 5.6% | Aug 30, 2010 | Cisco IOS XR 3.4.0 through 3.9.1, when BGP is enabled, does not properly handle unrecognized transitive attributes, whic... |
| CVE-2010-2554 | HIGH | 7.8 | 1.9% | Aug 11, 2010 | The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Wind... |
| CVE-2010-1896 | HIGH | 8.4 | 1.4% | Aug 11, 2010 | The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vist... |
| CVE-2010-1889 | HIGH | 7.8 | 2.0% | Aug 11, 2010 | Double free vulnerability in the kernel in Microsoft Windows Vista SP1 and SP2, and Windows Server 2008 Gold and SP2, al... |
| CVE-2010-2547 | HIGH | 8.1 | 5.3% | Aug 5, 2010 | Use-after-free vulnerability in kbx/keybox-blob.c in GPGSM in GnuPG 2.x through 2.0.16 allows remote attackers to cause ... |
| CVE-2010-1871 | HIGH | 8.8 | 83.4% | Aug 5, 2010 | JBoss Seam 2 (jboss-seam2), as used in JBoss Enterprise Application Platform 4.3.0 for Red Hat Linux, does not properly ... |
| CVE-2010-2753 | HIGH | 8.8 | 6.7% | Jul 30, 2010 | Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x... |
| CVE-2010-1208 | HIGH | 8.8 | 5.2% | Jul 30, 2010 | Use-after-free vulnerability in the attribute-cloning functionality in the DOM implementation in Mozilla Firefox 3.5.x b... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now