2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-4486 | — | — | 1.4% | Dec 7, 2010 | Use-after-free vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to cause a denial of service or... |
| CVE-2010-4485 | — | — | 0.7% | Dec 7, 2010 | Google Chrome before 8.0.552.215 does not properly restrict the generation of file dialogs, which allows remote attacker... |
| CVE-2010-4484 | — | — | 0.8% | Dec 7, 2010 | Google Chrome before 8.0.552.215 does not properly handle HTML5 databases, which allows attackers to cause a denial of s... |
| CVE-2010-4483 | — | — | 0.9% | Dec 7, 2010 | Google Chrome before 8.0.552.215 does not properly restrict read access to videos derived from CANVAS elements, which al... |
| CVE-2010-4482 | — | — | 0.9% | Dec 7, 2010 | Unspecified vulnerability in Google Chrome before 8.0.552.215 allows remote attackers to bypass the pop-up blocker via u... |
| CVE-2010-4479 | — | — | 4.9% | Dec 7, 2010 | Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of ser... |
| CVE-2010-4412 | — | — | 1.5% | Dec 7, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in pfSense 2 beta 4 allow remote attackers to inject arbitrary web s... |
| CVE-2010-4330 | — | — | 2.6% | Dec 7, 2010 | Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic before 1.2.9 allows remote attackers to ... |
| CVE-2010-4261 | — | — | 4.8% | Dec 7, 2010 | Off-by-one error in the icon_cb function in pe_icons.c in libclamav in ClamAV before 0.96.5 allows remote attackers to c... |
| CVE-2010-4260 | — | — | 4.9% | Dec 7, 2010 | Multiple unspecified vulnerabilities in pdf.c in libclamav in ClamAV before 0.96.5 allow remote attackers to cause a den... |
| CVE-2010-4259 | — | — | 10.9% | Dec 7, 2010 | Stack-based buffer overflow in FontForge 20100501 allows remote attackers to cause a denial of service (application cras... |
| CVE-2010-4257 | — | — | 3.1% | Dec 7, 2010 | SQL injection vulnerability in the do_trackbacks function in wp-includes/comment.php in WordPress before 3.0.2 allows re... |
| CVE-2010-4246 | — | — | 1.5% | Dec 7, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4 allow remote attackers to... |
| CVE-2010-4510 | — | — | — | Dec 6, 2010 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-4150. Reason: This candidate is a duplicate of ... |
| CVE-2010-4478 | CRITICAL | 9.8 | 4.2% | Dec 6, 2010 | OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol... |
| CVE-2010-4297 | — | — | 5.2% | Dec 6, 2010 | The VMware Tools update functionality in VMware Workstation 6.5.x before 6.5.5 build 328052 and 7.x before 7.1.2 build 3... |
| CVE-2010-4296 | — | — | 0.4% | Dec 6, 2010 | vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMware Player 3.1.x before 3.1.2 build 301548... |
| CVE-2010-4295 | — | — | 0.3% | Dec 6, 2010 | Race condition in the mounting process in vmware-mount in VMware Workstation 7.x before 7.1.2 build 301548 on Linux, VMw... |
| CVE-2010-4294 | — | — | 5.8% | Dec 6, 2010 | The frame decompression functionality in the VMnc media codec in VMware Movie Decoder before 6.5.5 build 328052 and 7.x ... |
| CVE-2010-4252 | — | — | 8.1% | Dec 6, 2010 | OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, ... |
| CVE-2010-4180 | — | — | 9.5% | Dec 6, 2010 | OpenSSL before 0.9.8q, and 1.0.x before 1.0.0c, when SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG is enabled, does not proper... |
| CVE-2010-4411 | — | — | 2.6% | Dec 6, 2010 | Unspecified vulnerability in CGI.pm 3.50 and earlier allows remote attackers to inject arbitrary HTTP headers and conduc... |
| CVE-2010-4410 | — | — | 2.0% | Dec 6, 2010 | CRLF injection vulnerability in the header function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and... |
| CVE-2010-4409 | — | — | 18.9% | Dec 6, 2010 | Integer overflow in the NumberFormatter::getSymbol (aka numfmt_get_symbol) function in PHP 5.3.3 and earlier allows cont... |
| CVE-2010-4408 | — | — | 2.0% | Dec 6, 2010 | Apache Archiva 1.0 through 1.0.3, 1.1 through 1.1.4, 1.2 through 1.2.2, and 1.3 through 1.3.1 does not require entry of ... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now