2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-2779 | — | — | 1.9% | Jan 28, 2011 | Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 8.x before 8.0 SP2 allows remote attackers to ... |
| CVE-2010-2778 | — | — | 1.9% | Jan 28, 2011 | Cross-site scripting (XSS) vulnerability in WebAccess in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0... |
| CVE-2010-2777 | — | — | 10.4% | Jan 28, 2011 | Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent (GWIA) in Novell GroupWise 7.x befo... |
| CVE-2010-4710 | — | — | 2.2% | Jan 28, 2011 | Cross-site scripting (XSS) vulnerability in the addItem method in the Menu widget in YUI before 2.9.0 allows remote atta... |
| CVE-2010-4326 | — | — | 10.2% | Jan 28, 2011 | Multiple buffer overflows in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP allow remot... |
| CVE-2010-4325 | — | — | 9.5% | Jan 28, 2011 | Buffer overflow in gwwww1.dll in GroupWise Internet Agent (GWIA) in Novell GroupWise before 8.02HP2 allows remote attack... |
| CVE-2010-4709 | — | — | 16.2% | Jan 28, 2011 | Heap-based buffer overflow in Automated Solutions Modbus/TCP Master OPC Server before 3.0.2 allows remote attackers to c... |
| CVE-2010-4572 | — | — | 1.8% | Jan 28, 2011 | CRLF injection vulnerability in chart.cgi in Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x ... |
| CVE-2010-4570 | — | — | 1.7% | Jan 28, 2011 | Cross-site scripting (XSS) vulnerability in the duplicate-detection functionality in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4... |
| CVE-2010-4569 | — | — | 1.7% | Jan 28, 2011 | Cross-site scripting (XSS) vulnerability in Bugzilla 3.7.1, 3.7.2, 3.7.3, and 4.0rc1 allows remote attackers to inject a... |
| CVE-2010-4568 | — | — | 2.5% | Jan 28, 2011 | Bugzilla 2.14 through 2.22.7; 3.0.x, 3.1.x, and 3.2.x before 3.2.10; 3.4.x before 3.4.10; 3.6.x before 3.6.4; and 4.0.x ... |
| CVE-2010-4567 | — | — | 1.8% | Jan 28, 2011 | Bugzilla before 3.2.10, 3.4.x before 3.4.10, 3.6.x before 3.6.4, and 4.0.x before 4.0rc2 does not properly handle whites... |
| CVE-2010-4256 | — | — | 0.4% | Jan 25, 2011 | The pipe_fcntl function in fs/pipe.c in the Linux kernel before 2.6.37 does not properly determine whether a file is a n... |
| CVE-2010-4353 | — | — | 1.7% | Jan 25, 2011 | Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery before 3.0 and beta allows ... |
| CVE-2010-4341 | — | — | 0.5% | Jan 25, 2011 | The pam_parse_in_data_v2 function in src/responder/pam/pamsrv_cmd.c in the PAM responder in SSSD 1.5.0, 1.4.x, and 1.3 a... |
| CVE-2010-4255 | — | — | 0.8% | Jan 25, 2011 | The fixup_page_fault function in arch/x86/traps.c in Xen 4.0.1 and earlier on 64-bit platforms, when paravirtualization ... |
| CVE-2010-4708 | — | — | 0.4% | Jan 24, 2011 | The pam_env module in Linux-PAM (aka pam) 1.1.2 and earlier reads the .pam_environment file in a user's home directory, ... |
| CVE-2010-4707 | — | — | 0.4% | Jan 24, 2011 | The check_acl function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.2 and earlier does not verify t... |
| CVE-2010-4706 | — | — | 0.4% | Jan 24, 2011 | The pam_sm_close_session function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) 1.1.2 and earlier does n... |
| CVE-2010-3927 | — | — | 0.3% | Jan 24, 2011 | Untrusted search path vulnerability in Lunascape before 6.4.0 allows local users to gain privileges via a Trojan horse D... |
| CVE-2010-3853 | — | — | 0.4% | Jan 24, 2011 | pam_namespace.c in the pam_namespace module in Linux-PAM (aka pam) before 1.1.3 uses the environment of the invoking app... |
| CVE-2010-3435 | — | — | 0.4% | Jan 24, 2011 | The (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) before 1.1.2 use root privileges during read access to f... |
| CVE-2010-3431 | — | — | 0.3% | Jan 24, 2011 | The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not ... |
| CVE-2010-3430 | — | — | 0.3% | Jan 24, 2011 | The privilege-dropping implementation in the (1) pam_env and (2) pam_mail modules in Linux-PAM (aka pam) 1.1.2 does not ... |
| CVE-2010-3316 | — | — | 0.4% | Jan 24, 2011 | The run_coprocess function in pam_xauth.c in the pam_xauth module in Linux-PAM (aka pam) before 1.1.2 does not check the... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now