2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3434 | — | — | 6.5% | Sep 30, 2010 | Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers... |
| CVE-2010-3429 | — | — | 4.2% | Sep 30, 2010 | flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to e... |
| CVE-2010-3298 | — | — | 0.4% | Sep 30, 2010 | The hso_get_count function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a... |
| CVE-2010-3297 | — | — | 0.4% | Sep 30, 2010 | The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a ... |
| CVE-2010-3296 | — | — | 0.4% | Sep 30, 2010 | The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in the Linux kernel before 2.6.36-rc5 does not prope... |
| CVE-2010-3688 | — | — | 1.3% | Sep 29, 2010 | Directory traversal vulnerability in ADMIN/login.php in NetArtMEDIA WebSiteAdmin allows remote emote attackers to includ... |
| CVE-2010-3687 | — | — | 1.2% | Sep 29, 2010 | Unspecified vulnerability in the powermail extension 1.5.3 and earlier for TYPO3 allows remote attackers to bypass valid... |
| CVE-2010-3686 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3685 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3684 | — | — | 0.3% | Sep 29, 2010 | The FTP authentication module in Synology Disk Station 2.x logs passwords to the web application interface in cases of i... |
| CVE-2010-3468 | — | — | 7.0% | Sep 29, 2010 | Directory traversal vulnerability in fileManager.cfc in Mura CMS 5.1 before 5.1.498 and 5.2 before 5.2.2809, and Sava CM... |
| CVE-2010-3380 | — | — | 0.3% | Sep 29, 2010 | The (1) init.d/slurm and (2) init.d/slurmdbd scripts in SLURM before 2.1.14 place the . (dot) directory in the LD_LIBRAR... |
| CVE-2010-3310 | — | — | 0.4% | Sep 29, 2010 | Multiple integer signedness errors in net/rose/af_rose.c in the Linux kernel before 2.6.36-rc5-next-20100923 allow local... |
| CVE-2010-3091 | — | — | 2.4% | Sep 29, 2010 | The OpenID module in Drupal 6.x before 6.18, and the OpenID module 5.x before 5.x-1.4 for Drupal, violates the OpenID 2.... |
| CVE-2010-3084 | — | — | 0.4% | Sep 29, 2010 | Buffer overflow in the niu_get_ethtool_tcam_all function in drivers/net/niu.c in the Linux kernel before 2.6.36-rc4 allo... |
| CVE-2010-2946 | — | — | 0.4% | Sep 29, 2010 | fs/jfs/xattr.c in the Linux kernel before 2.6.35.2 does not properly handle a certain legacy format for storage of exten... |
| CVE-2010-2530 | — | — | 0.3% | Sep 29, 2010 | Multiple integer signedness errors in smb_subr.c in the netsmb module in the kernel in NetBSD 5.0.2 and earlier, FreeBSD... |
| CVE-2010-2478 | — | — | 0.4% | Sep 29, 2010 | Integer overflow in the ethtool_get_rxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit p... |
| CVE-2010-2453 | — | — | 0.9% | Sep 29, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in Synology Disk Station 2.x before DSM3.0-1337 allow remote attacke... |
| CVE-2010-3490 | — | — | 9.6% | Sep 28, 2010 | Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interfa... |
| CVE-2010-3277 | — | — | 0.3% | Sep 28, 2010 | The installer in VMware Workstation 7.x before 7.1.2 build 301548 and VMware Player 3.x before 3.1.2 build 301548 render... |
| CVE-2010-3087 | — | — | 3.2% | Sep 28, 2010 | LibTIFF before 3.9.2-5.2.1 in SUSE openSUSE 11.3 allows remote attackers to cause a denial of service (memory corruption... |
| CVE-2010-3070 | — | — | 6.2% | Sep 28, 2010 | Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attacker... |
| CVE-2010-2950 | — | — | 5.7% | Sep 28, 2010 | Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attack... |
| CVE-2010-0405 | — | — | 3.3% | Sep 28, 2010 | Integer overflow in the BZ2_decompress function in decompress.c in bzip2 and libbzip2 before 1.0.6 allows context-depend... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now