2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-1836 | — | — | 3.3% | Nov 15, 2010 | Stack-based buffer overflow in CoreGraphics in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote attackers to... |
| CVE-2010-1834 | — | — | 1.3% | Nov 15, 2010 | CFNetwork in Apple Mac OS X 10.6.x before 10.6.5 does not properly validate the domains of cookies, which makes it easie... |
| CVE-2010-1833 | — | — | 2.9% | Nov 15, 2010 | Apple Type Services (ATS) in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or ca... |
| CVE-2010-1832 | — | — | 3.3% | Nov 15, 2010 | Stack-based buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote... |
| CVE-2010-1831 | — | — | 3.3% | Nov 15, 2010 | Buffer overflow in Apple Type Services (ATS) in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote attackers t... |
| CVE-2010-1830 | — | — | 1.2% | Nov 15, 2010 | AFP Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 generates different error messages depending on whether a s... |
| CVE-2010-1829 | — | — | 2.3% | Nov 15, 2010 | Directory traversal vulnerability in AFP Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote authenti... |
| CVE-2010-1828 | — | — | 2.4% | Nov 15, 2010 | AFP Server in Apple Mac OS X 10.5.8 and 10.6.x before 10.6.5 allows remote attackers to cause a denial of service (NULL ... |
| CVE-2010-1803 | — | — | 1.7% | Nov 15, 2010 | Time Machine in Apple Mac OS X 10.6.x before 10.6.5 does not verify the unique identifier of its remote AFP volume, whic... |
| CVE-2010-1378 | CRITICAL | 9.8 | 1.3% | Nov 15, 2010 | OpenSSL in Apple Mac OS X 10.6.x before 10.6.5 does not properly perform arithmetic, which allows remote attackers to by... |
| CVE-2010-2892 | — | — | 3.5% | Nov 15, 2010 | gsb/drivers.php in LANDesk Management Gateway 4.0 through 4.0-1.48 and 4.2 through 4.2-1.8 allows remote authenticated a... |
| CVE-2010-2638 | — | — | 0.9% | Nov 15, 2010 | Unspecified vulnerability in IBM WebSphere MQ 7.0 before 7.0.1.5 allows remote authenticated users to cause a denial of ... |
| CVE-2010-0113 | — | — | 1.2% | Nov 15, 2010 | The Symantec Norton Mobile Security application 1.0 Beta for Android records setup details, possibly including wipe/lock... |
| CVE-2010-4236 | — | — | 0.9% | Nov 12, 2010 | Untrusted search path vulnerability in estaskwrapper in IBM OmniFind Enterprise Edition before 9.1 allows local users to... |
| CVE-2010-3899 | — | — | 3.1% | Nov 12, 2010 | IBM OmniFind Enterprise Edition 8.x and 9.x performs web crawls with an unlimited recursion depth, which allows remote w... |
| CVE-2010-3898 | — | — | 1.4% | Nov 12, 2010 | IBM OmniFind Enterprise Edition 8.x and 9.x does not properly restrict the cookie path of administrator (aka ESAdmin) co... |
| CVE-2010-3897 | — | — | 1.2% | Nov 12, 2010 | ESSearchApplication/palette.do in IBM OmniFind Enterprise Edition 8.x and 9.x includes the administrator password in the... |
| CVE-2010-3896 | — | — | 1.6% | Nov 12, 2010 | The ESSearchApplication directory tree in IBM OmniFind Enterprise Edition 8.x and 9.x does not require authentication, w... |
| CVE-2010-3895 | — | — | 0.8% | Nov 12, 2010 | esRunCommand in IBM OmniFind Enterprise Edition before 9.1 allows local users to gain privileges by specifying an arbitr... |
| CVE-2010-3894 | — | — | 12.0% | Nov 12, 2010 | Stack-based buffer overflow in the Java_com_ibm_es_oss_CryptionNative_ESEncrypt function in /opt/IBM/es/lib/libffq.crypt... |
| CVE-2010-3893 | — | — | 2.4% | Nov 12, 2010 | The administrator interface in IBM OmniFind Enterprise Edition 8.x and 9.x does not restrict use of a session ID (aka SI... |
| CVE-2010-3892 | — | — | 1.2% | Nov 12, 2010 | Session fixation vulnerability in the login form in the administrator interface in IBM OmniFind Enterprise Edition 8.x a... |
| CVE-2010-3891 | — | — | 1.1% | Nov 12, 2010 | Cross-site request forgery (CSRF) vulnerability in ESAdmin/security.do in the administrator interface in IBM OmniFind En... |
| CVE-2010-3890 | — | — | 1.1% | Nov 12, 2010 | Cross-site scripting (XSS) vulnerability in IBM OmniFind Enterprise Edition before 9.1 allows remote attackers to inject... |
| CVE-2010-3870 | — | — | 11.3% | Nov 12, 2010 | The utf8_decode function in PHP before 5.3.4 does not properly handle non-shortest form UTF-8 encoding and ill-formed su... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now