2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-2380 | — | — | 1.8% | Aug 9, 2011 | Bugzilla 2.23.3 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x, 3.6.x before 3.6.6, 3.7.x, 4.0.x before... |
| CVE-2011-2379 | — | — | 1.7% | Aug 9, 2011 | Cross-site scripting (XSS) vulnerability in Bugzilla 2.4 through 2.22.7, 3.0.x through 3.3.x, 3.4.x before 3.4.12, 3.5.x... |
| CVE-2011-3009 | — | — | 2.1% | Aug 5, 2011 | Ruby before 1.8.6-p114 does not reset the random seed upon forking, which makes it easier for context-dependent attacker... |
| CVE-2011-3008 | — | — | 1.5% | Aug 5, 2011 | The default configuration of Avaya Secure Access Link (SAL) Gateway 1.5, 1.8, and 2.0 contains certain domain names in t... |
| CVE-2011-2900 | — | — | 13.3% | Aug 5, 2011 | Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir function in yasslEWS.... |
| CVE-2011-2721 | — | — | 3.4% | Aug 5, 2011 | Off-by-one error in the cli_hm_scan function in matcher-hash.c in libclamav in ClamAV before 0.97.2 allows remote attack... |
| CVE-2011-2720 | — | — | 2.9% | Aug 5, 2011 | The autocompletion functionality in GLPI before 0.80.2 does not blacklist certain username and password fields, which al... |
| CVE-2011-2705 | — | — | 1.9% | Aug 5, 2011 | The SecureRandom.random_bytes function in lib/securerandom.rb in Ruby before 1.8.7-p352 and 1.9.x before 1.9.2-p290 reli... |
| CVE-2011-2686 | — | — | 2.6% | Aug 5, 2011 | Ruby before 1.8.7-p352 does not reset the random seed upon forking, which makes it easier for context-dependent attacker... |
| CVE-2011-2591 | — | — | 5.4% | Aug 5, 2011 | Multiple buffer overflows in the Provideo ActiveX controls allow remote attackers to execute arbitrary code via crafted ... |
| CVE-2011-1340 | — | — | 1.1% | Aug 5, 2011 | Cross-site scripting (XSS) vulnerability in skins/plone_templates/default_error_message.pt in Plone before 2.5.3 allows ... |
| CVE-2011-2764 | — | — | 8.7% | Aug 4, 2011 | The FS_CheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in Worl... |
| CVE-2011-2701 | — | — | 1.8% | Aug 4, 2011 | The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies fro... |
| CVE-2011-1412 | — | — | 4.2% | Aug 4, 2011 | sys/sys_unix.c in the ioQuake3 engine on Unix and Linux, as used in World of Padman 1.5.x before 1.5.1.1 and OpenArena 0... |
| CVE-2011-0252 | — | — | 5.1% | Aug 4, 2011 | Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2011-0251 | — | — | 5.1% | Aug 4, 2011 | Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2011-0250 | — | — | 5.1% | Aug 4, 2011 | Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2011-0249 | — | — | 5.1% | Aug 4, 2011 | Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2011-0248 | — | — | 3.0% | Aug 4, 2011 | Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Exp... |
| CVE-2011-0247 | — | — | 5.0% | Aug 4, 2011 | Multiple stack-based buffer overflows in Apple QuickTime before 7.7 on Windows allow remote attackers to execute arbitra... |
| CVE-2011-0246 | — | — | 4.2% | Aug 4, 2011 | Heap-based buffer overflow in Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or... |
| CVE-2011-0245 | — | — | 4.2% | Aug 4, 2011 | Buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of ser... |
| CVE-2011-2819 | — | — | 1.4% | Aug 3, 2011 | Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy via vectors related to handli... |
| CVE-2011-2818 | — | — | 1.4% | Aug 3, 2011 | Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service o... |
| CVE-2011-2805 | — | — | 1.4% | Aug 3, 2011 | Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and conduct script injection ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now