2010 CVE Vulnerabilities
5,249 CVEs published in 2010.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2010-3739 | — | — | 1.1% | Oct 5, 2010 | The audit facility in the Security component in IBM DB2 UDB 9.5 before FP6a uses instance-level audit settings to captur... |
| CVE-2010-3738 | — | — | 1.2% | Oct 5, 2010 | The Security component in IBM DB2 UDB 9.5 before FP6a logs AUDIT events by using a USERID and an AUTHID value correspond... |
| CVE-2010-3737 | — | — | 1.0% | Oct 5, 2010 | Memory leak in the Relational Data Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users t... |
| CVE-2010-3736 | — | — | 1.1% | Oct 5, 2010 | Memory leak in the Relational Data Services component in IBM DB2 UDB 9.5 before FP6a, when the connection concentrator i... |
| CVE-2010-3735 | — | — | 1.0% | Oct 5, 2010 | The "Query Compiler, Rewrite, Optimizer" component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to c... |
| CVE-2010-3734 | — | — | 1.4% | Oct 5, 2010 | The Install component in IBM DB2 UDB 9.5 before FP6a on Linux, UNIX, and Windows enforces an unintended limit on passwor... |
| CVE-2010-3733 | — | — | 0.3% | Oct 5, 2010 | The Engine Utilities component in IBM DB2 UDB 9.5 before FP6a uses world-writable permissions for the sqllib/cfg/db2sprf... |
| CVE-2010-3732 | — | — | 1.5% | Oct 5, 2010 | The DRDA Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of servic... |
| CVE-2010-3731 | — | — | 9.6% | Oct 5, 2010 | Stack-based buffer overflow in the validateUser implementation in the com.ibm.db2.das.core.DasSysCmd function in db2dasr... |
| CVE-2010-3730 | HIGH | 8.8 | 0.8% | Oct 5, 2010 | Google Chrome before 6.0.472.62 does not properly use information about the origin of a document to manage properties, w... |
| CVE-2010-3729 | CRITICAL | 9.8 | 2.1% | Oct 5, 2010 | The SPDY protocol implementation in Google Chrome before 6.0.472.62 does not properly manage buffers, which might allow ... |
| CVE-2010-3307 | — | — | 2.3% | Oct 5, 2010 | Multiple PHP remote file inclusion vulnerabilities in themes/default/index.php in Free Simple CMS 1.0 and earlier allow ... |
| CVE-2010-2653 | — | — | 0.4% | Oct 5, 2010 | Race condition in the hvc_close function in drivers/char/hvc_console.c in the Linux kernel before 2.6.34 allows local us... |
| CVE-2010-2535 | — | — | 0.9% | Oct 5, 2010 | Multiple cross-site scripting (XSS) vulnerabilities in the Back End in Joomla! 1.5.x before 1.5.20 allow remote authenti... |
| CVE-2010-3442 | — | — | 0.4% | Oct 4, 2010 | Multiple integer overflows in the snd_ctl_new function in sound/core/control.c in the Linux kernel before 2.6.36-rc5-nex... |
| CVE-2010-3437 | — | — | 2.4% | Oct 4, 2010 | Integer signedness error in the pkt_find_dev_from_minor function in drivers/block/pktcdvd.c in the Linux kernel before 2... |
| CVE-2010-3374 | — | — | 0.3% | Oct 4, 2010 | Qt Creator before 2.0.1 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain pri... |
| CVE-2010-3315 | — | — | 4.2% | Oct 4, 2010 | authz.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and... |
| CVE-2010-1822 | HIGH | 8.8 | 2.2% | Oct 4, 2010 | WebKit, as used in Apple Safari before 4.1.3 and 5.0.x before 5.0.3 and Google Chrome before 6.0.472.62, does not proper... |
| CVE-2010-1623 | — | — | 20.2% | Oct 4, 2010 | Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache Portable Runtime Utility libra... |
| CVE-2010-3434 | — | — | 6.5% | Sep 30, 2010 | Buffer overflow in the find_stream_bounds function in pdf.c in libclamav in ClamAV before 0.96.3 allows remote attackers... |
| CVE-2010-3429 | — | — | 4.2% | Sep 30, 2010 | flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to e... |
| CVE-2010-3298 | — | — | 0.4% | Sep 30, 2010 | The hso_get_count function in drivers/net/usb/hso.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a... |
| CVE-2010-3297 | — | — | 0.4% | Sep 30, 2010 | The eql_g_master_cfg function in drivers/net/eql.c in the Linux kernel before 2.6.36-rc5 does not properly initialize a ... |
| CVE-2010-3296 | — | — | 0.4% | Sep 30, 2010 | The cxgb_extension_ioctl function in drivers/net/cxgb3/cxgb3_main.c in the Linux kernel before 2.6.36-rc5 does not prope... |
Check if your code is affected by 2010 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now