2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-2772 | HIGH | 7.8 | 0.5% | Jul 22, 2010 | Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end d... |
| CVE-2010-2568 | HIGH | 7.8 | 91.3% | Jul 22, 2010 | Windows Shell in Microsoft Windows XP SP3, Server 2003 SP2, Vista SP1 and SP2, Server 2008 SP2 and R2, and Windows 7 all... |
| CVE-2010-2073 | HIGH | 7.5 | 1.8% | Jun 16, 2010 | auth_db_config.py in Pyftpd 0.8.4 contains hard-coded usernames and passwords for the (1) test, (2) user, and (3) roxon ... |
| CVE-2010-1260 | HIGH | 7.5 | 19.1% | Jun 8, 2010 | The IE8 Developer Toolbar in Microsoft Internet Explorer 8 SP1, SP2, and SP3 allows user-assisted remote attackers to ex... |
| CVE-2010-0485 | HIGH | 7.8 | 1.2% | Jun 8, 2010 | The Windows kernel-mode drivers in win32k.sys in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista SP1 ... |
| CVE-2010-1297 | HIGH | 7.8 | 82.3% | Jun 8, 2010 | Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64; Adobe AIR before 2.0.2.12610; and Adobe Reader and Acrob... |
| CVE-2010-1283 | HIGH | 8.8 | 6.3% | May 13, 2010 | Adobe Shockwave Player before 11.5.7.609 does not properly parse 3D objects in .dir (aka Director) files, which allows r... |
| CVE-2010-1281 | HIGH | 8.8 | 7.5% | May 13, 2010 | iml32.dll in Adobe Shockwave Player before 11.5.7.609 does not validate a certain value from a file before using it in f... |
| CVE-2010-1280 | HIGH | 8.8 | 16.6% | May 13, 2010 | Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service ... |
| CVE-2010-0987 | HIGH | 8.8 | 11.4% | May 13, 2010 | Heap-based buffer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary... |
| CVE-2010-0986 | HIGH | 8.8 | 5.1% | May 13, 2010 | Adobe Shockwave Player before 11.5.7.609 does not properly process asset entries, which allows remote attackers to cause... |
| CVE-2010-0130 | HIGH | 8.8 | 7.3% | May 13, 2010 | Integer overflow in Adobe Shockwave Player before 11.5.7.609 might allow remote attackers to execute arbitrary code via ... |
| CVE-2010-0129 | HIGH | 8.8 | 6.3% | May 13, 2010 | Multiple integer overflows in Adobe Shockwave Player before 11.5.7.609 allow remote attackers to cause a denial of servi... |
| CVE-2010-0127 | HIGH | 8.8 | 5.1% | May 13, 2010 | Adobe Shockwave Player before 11.5.7.609 allows remote attackers to execute arbitrary code or cause a denial of service ... |
| CVE-2010-1437 | HIGH | 7 | 0.7% | May 7, 2010 | Race condition in the find_keyring_by_name function in security/keys/keyring.c in the Linux kernel 2.6.34-rc5 and earlie... |
| CVE-2010-1428 | HIGH | 7.5 | 62.3% | Apr 28, 2010 | The Web Console (aka web-console) in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4... |
| CVE-2010-0492 | HIGH | 8.1 | 27.5% | Mar 31, 2010 | Use-after-free vulnerability in mstime.dll in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary... |
| CVE-2010-0050 | HIGH | 8.8 | 11.6% | Mar 15, 2010 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or... |
| CVE-2010-0048 | HIGH | 8.8 | 5.0% | Mar 15, 2010 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or... |
| CVE-2010-0047 | HIGH | 8.8 | 5.0% | Mar 15, 2010 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or... |
| CVE-2010-0806 | HIGH | 8.8 | 82.0% | Mar 10, 2010 | Use-after-free vulnerability in the Peer Objects component (aka iepeers.dll) in Microsoft Internet Explorer 6, 6 SP1, an... |
| CVE-2010-0258 | HIGH | 7.8 | 61.0% | Mar 10, 2010 | Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Conv... |
| CVE-2010-0302 | HIGH | 7.5 | 2.6% | Mar 5, 2010 | Use-after-free vulnerability in the abstract file-descriptor handling interface in the cupsdDoSelect function in schedul... |
| CVE-2010-0188 | HIGH | 7.8 | 88.2% | Feb 22, 2010 | Unspecified vulnerability in Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows attackers to cause a ... |
| CVE-2010-0386 | HIGH | 8.1 | 1.7% | Jan 25, 2010 | The default configuration of Sun Java System Application Server 7 and 7 2004Q2 enables the HTTP TRACE method, which make... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now