2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4076 | — | — | 0.3% | Nov 29, 2010 | The rs_ioctl function in drivers/char/amiserial.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize ... |
| CVE-2010-4075 | — | — | 0.4% | Nov 29, 2010 | The uart_get_count function in drivers/serial/serial_core.c in the Linux kernel before 2.6.37-rc1 does not properly init... |
| CVE-2010-4074 | — | — | 0.4% | Nov 29, 2010 | The USB subsystem in the Linux kernel before 2.6.36-rc5 does not properly initialize certain structure members, which al... |
| CVE-2010-4073 | — | — | 1.5% | Nov 29, 2010 | The ipc subsystem in the Linux kernel before 2.6.37-rc1 does not initialize certain structures, which allows local users... |
| CVE-2010-4072 | — | — | 0.4% | Nov 29, 2010 | The copy_shmid_to_user function in ipc/shm.c in the Linux kernel before 2.6.37-rc1 does not initialize a certain structu... |
| CVE-2010-4312 | — | — | 2.1% | Nov 26, 2010 | The default configuration of Apache Tomcat 6.x does not include the HTTPOnly flag in a Set-Cookie header, which makes it... |
| CVE-2010-4311 | — | — | 0.9% | Nov 26, 2010 | Free Simple Software 1.0 stores passwords in cleartext, which allows context-dependent attackers to obtain sensitive inf... |
| CVE-2010-4298 | — | — | 1.0% | Nov 26, 2010 | SQL injection vulnerability in the download module in Free Simple Software 1.0 allows remote attackers to execute arbitr... |
| CVE-2010-4172 | — | — | 42.0% | Nov 26, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 an... |
| CVE-2010-3911 | — | — | 1.1% | Nov 26, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in vtiger CRM before 5.2.1 allow remote attackers to inject arbitrar... |
| CVE-2010-3910 | — | — | 7.4% | Nov 26, 2010 | Multiple directory traversal vulnerabilities in the return_application_language function in include/utils/utils.php in v... |
| CVE-2010-3909 | — | — | 1.6% | Nov 26, 2010 | Incomplete blacklist vulnerability in config.template.php in vtiger CRM before 5.2.1 allows remote authenticated users t... |
| CVE-2010-3855 | — | — | 5.3% | Nov 26, 2010 | Buffer overflow in the ft_var_readpackedpoints function in truetype/ttgxvar.c in FreeType 2.4.3 and earlier allows remot... |
| CVE-2010-3832 | — | — | 3.7% | Nov 26, 2010 | Heap-based buffer overflow in the GSM mobility management implementation in Telephony in Apple iOS before 4.2 on the iPh... |
| CVE-2010-3831 | — | — | 1.1% | Nov 26, 2010 | Photos in Apple iOS before 4.2 enables support for HTTP Basic Authentication over an unencrypted connection, which allow... |
| CVE-2010-3830 | — | — | 0.7% | Nov 26, 2010 | Networking in Apple iOS before 4.2 accesses an invalid pointer during the processing of packet filter rules, which allow... |
| CVE-2010-3829 | — | — | 2.4% | Nov 26, 2010 | WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LI... |
| CVE-2010-3828 | — | — | 1.0% | Nov 26, 2010 | iAd Content Display in Apple iOS before 4.2 allows man-in-the-middle attackers to make calls via a crafted URL in an ad. |
| CVE-2010-3827 | — | — | 1.2% | Nov 26, 2010 | Apple iOS before 4.2 does not properly validate signatures before displaying a configuration profile in the configuratio... |
| CVE-2010-3814 | — | — | 3.9% | Nov 26, 2010 | Heap-based buffer overflow in the Ins_SHZ function in ttinterp.c in FreeType 2.4.3 and earlier allows remote attackers t... |
| CVE-2010-3705 | — | — | 2.0% | Nov 26, 2010 | The sctp_auth_asoc_get_hmac function in net/sctp/auth.c in the Linux kernel before 2.6.36 does not properly validate the... |
| CVE-2010-4301 | — | — | 9.3% | Nov 26, 2010 | epan/dissectors/packet-zbee-zcl.c in the ZigBee ZCL dissector in Wireshark 1.4.0 through 1.4.1 allows remote attackers t... |
| CVE-2010-4300 | — | — | 13.8% | Nov 26, 2010 | Heap-based buffer overflow in the dissect_ldss_transfer function (epan/dissectors/packet-ldss.c) in the LDSS dissector i... |
| CVE-2010-3698 | — | — | 0.4% | Nov 26, 2010 | The KVM implementation in the Linux kernel before 2.6.36 does not properly reload the FS and GS segment registers, which... |
| CVE-2010-3445 | — | — | 4.1% | Nov 26, 2010 | Stack consumption vulnerability in the dissect_ber_unknown function in epan/dissectors/packet-ber.c in the BER dissector... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now