2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3973 | — | — | 71.7% | Dec 23, 2010 | The WMITools ActiveX control in WBEMSingleView.ocx 1.50.1131.0 in Microsoft WMI Administrative Tools 1.1 and earlier in ... |
| CVE-2010-3972 | — | — | 94.5% | Dec 23, 2010 | Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 ... |
| CVE-2010-3881 | — | — | 0.5% | Dec 23, 2010 | arch/x86/kvm/x86.c in the Linux kernel before 2.6.36.2 does not initialize certain structure members, which allows local... |
| CVE-2010-4595 | — | — | 1.3% | Dec 22, 2010 | The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 disables the http.device.stanza blacklisting functionali... |
| CVE-2010-4594 | — | — | 1.0% | Dec 22, 2010 | The Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does no... |
| CVE-2010-4593 | — | — | 1.1% | Dec 22, 2010 | The Connection Manager in IBM Lotus Mobile Connect before 6.1.4 does not properly maintain a certain reference count, wh... |
| CVE-2010-4592 | — | — | 1.2% | Dec 22, 2010 | The Mobile Network Connections functionality in the Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HT... |
| CVE-2010-4591 | — | — | 0.3% | Dec 22, 2010 | The Connection Manager in IBM Lotus Mobile Connect (LMC) before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, d... |
| CVE-2010-4590 | — | — | 1.1% | Dec 22, 2010 | Cross-site scripting (XSS) vulnerability in HTTP Access Services (HTTP-AS) in the Connection Manager in IBM Lotus Mobile... |
| CVE-2010-4589 | — | — | 1.1% | Dec 22, 2010 | Cross-site scripting (XSS) vulnerability in IBM ENOVIA 6 allows remote attackers to inject arbitrary web script or HTML ... |
| CVE-2010-4573 | — | — | 2.5% | Dec 22, 2010 | The Update Installer in VMware ESXi 4.1, when a modified sfcb.cfg is present, does not properly configure the SFCB authe... |
| CVE-2010-4347 | — | — | 2.2% | Dec 22, 2010 | The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custom_method file, which a... |
| CVE-2010-4346 | — | — | 0.4% | Dec 22, 2010 | The install_special_mapping function in mm/mmap.c in the Linux kernel before 2.6.37-rc6 does not make an expected securi... |
| CVE-2010-4277 | — | — | 1.8% | Dec 22, 2010 | Cross-site scripting (XSS) vulnerability in lembedded-video.php in the Embedded Video plugin 4.1 for WordPress allows re... |
| CVE-2010-4114 | — | — | 1.7% | Dec 22, 2010 | Cross-site scripting (XSS) vulnerability in HP Discovery & Dependency Mapping Inventory (DDMI) 2.5x, 7.5x, and 7.6x allo... |
| CVE-2010-4113 | — | — | 9.7% | Dec 22, 2010 | Stack-based buffer overflow in HP Power Manager (HPPM) before 4.3.2 allows remote attackers to execute arbitrary code vi... |
| CVE-2010-4112 | — | — | 2.3% | Dec 22, 2010 | HP Insight Management Agents before 8.6 allows remote attackers to obtain sensitive information via an unspecified reque... |
| CVE-2010-4111 | — | — | 1.8% | Dec 22, 2010 | Cross-site scripting (XSS) vulnerability in HP Insight Diagnostics Online Edition before 8.5.1.3712 allows remote attack... |
| CVE-2010-4110 | — | — | 0.3% | Dec 22, 2010 | Unspecified vulnerability in HP OpenVMS 8.3, 8.3-1H1, and 8.4 on the Itanium platform on Integrity servers allows local ... |
| CVE-2010-3971 | — | — | 81.7% | Dec 22, 2010 | Use-after-free vulnerability in the CSharedStyleSheet::Notify function in the Cascading Style Sheets (CSS) parser in msh... |
| CVE-2010-3970 | — | — | 67.7% | Dec 22, 2010 | Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor... |
| CVE-2010-3905 | — | — | 2.9% | Dec 22, 2010 | The password reset feature in the administrator interface for Eucalyptus 2.0.0 and 2.0.1 does not perform authentication... |
| CVE-2010-3268 | — | — | 3.3% | Dec 22, 2010 | The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel ... |
| CVE-2010-2644 | — | — | 1.2% | Dec 22, 2010 | IBM WebSphere Service Registry and Repository (WSRR) 7.0.0 before FP1 does not properly implement access control, which ... |
| CVE-2010-4587 | — | — | 2.3% | Dec 22, 2010 | Opera before 11.00 on Windows does not properly implement the Insecure Third Party Module warning message, which might m... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now