2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4508 | — | — | 1.3% | Dec 9, 2010 | The WebSockets implementation in Mozilla Firefox 4 through 4.0 Beta 7 does not properly perform proxy upgrade negotiatio... |
| CVE-2010-4009 | — | — | 4.9% | Dec 9, 2010 | Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of ... |
| CVE-2010-3922 | — | — | 1.3% | Dec 9, 2010 | SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to execute arbit... |
| CVE-2010-3921 | — | — | 1.3% | Dec 9, 2010 | Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to ... |
| CVE-2010-3802 | — | — | 4.9% | Dec 9, 2010 | Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2010-3801 | — | — | 4.9% | Dec 9, 2010 | Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corr... |
| CVE-2010-3800 | — | — | 4.9% | Dec 9, 2010 | Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corr... |
| CVE-2010-2235 | — | — | 3.3% | Dec 9, 2010 | template_api.py in Cobbler before 2.0.7, as used in Red Hat Network Satellite Server and other products, does not disabl... |
| CVE-2010-1508 | — | — | 5.5% | Dec 9, 2010 | Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code ... |
| CVE-2010-0530 | — | — | 0.4% | Dec 9, 2010 | Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user ... |
| CVE-2010-4505 | — | — | 1.0% | Dec 8, 2010 | Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, when magic_quotes_gpc is disabled, allow remote at... |
| CVE-2010-4504 | — | — | 1.1% | Dec 8, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in eSyndiCat Directory 2.3 allow remote attackers to inject arbitrar... |
| CVE-2010-4503 | — | — | 1.0% | Dec 8, 2010 | SQL injection vulnerability in indexlight.php in Aigaion 1.3.4 allows remote attackers to execute arbitrary SQL commands... |
| CVE-2010-4502 | — | — | 1.2% | Dec 8, 2010 | Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of ... |
| CVE-2010-4501 | — | — | — | Dec 8, 2010 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-4334. Reason: This candidate is a duplicate of... |
| CVE-2010-4012 | — | — | 0.3% | Dec 8, 2010 | Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the ... |
| CVE-2010-3920 | — | — | 0.3% | Dec 8, 2010 | The Seiko Epson printer driver installers for LP-S9000 before 4.1.11 and LP-S7100 before 4.1.7, or as downloaded from th... |
| CVE-2010-3860 | — | — | 3.0% | Dec 8, 2010 | IcedTea 1.7.x before 1.7.6, 1.8.x before 1.8.3, and 1.9.x before 1.9.2, as based on OpenJDK 6, declares multiple sensiti... |
| CVE-2010-3699 | — | — | 0.7% | Dec 8, 2010 | The backend driver in Xen 3.x allows guest OS users to cause a denial of service via a kernel thread leak, which prevent... |
| CVE-2010-4109 | — | — | 1.7% | Dec 8, 2010 | Cross-site scripting (XSS) vulnerability in the Contacts Application in HP Palm webOS before 2.0 allows remote attackers... |
| CVE-2010-4108 | — | — | 2.6% | Dec 8, 2010 | HP HP-UX B.11.11, B.11.23, and B.11.31 does not properly support threaded processes, which allows remote authenticated u... |
| CVE-2010-3372 | — | — | 0.3% | Dec 8, 2010 | Untrusted search path vulnerability in NorduGrid Advanced Resource Connector (ARC) before 0.8.3 allows local users to ga... |
| CVE-2010-2793 | — | — | 1.0% | Dec 8, 2010 | Race condition in the SPICE (aka spice-activex) plug-in for Internet Explorer in Red Hat Enterprise Virtualization (RHEV... |
| CVE-2010-4500 | — | — | 0.9% | Dec 8, 2010 | Multiple SQL injection vulnerabilities in contact.php in MRCGIGUY (MCG) FreeTicket 1.0.0, when magic_quotes_gpc is disab... |
| CVE-2010-4480 | — | — | 5.8% | Dec 8, 2010 | error.php in PhpMyAdmin 3.3.8.1, and other versions before 3.4.0-beta1, allows remote attackers to conduct cross-site sc... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now