2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-2960Heap-based buffer overflow in httpsvr.exe 6.0.5.3 in Sunway ForceControl 6.1 SP1, SP2, and SP3 allows remote attackers t...
CVE-2011-2959Stack-based buffer overflow in the Open Database Connectivity (ODBC) service (Odbcixv9se.exe) in 7-Technologies Interact...
CVE-2011-2695Multiple off-by-one errors in the ext4 subsystem in the Linux kernel before 3.0-rc5 allow local users to cause a denial ...
CVE-2011-2689The gfs2_fallocate function in fs/gfs2/file.c in the Linux kernel before 3.0-rc1 does not ensure that the size of a chun...
CVE-2011-2667Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and CA Total Defense r12...
CVE-2011-2549Unspecified vulnerability in Cisco IOS XR 4.1.x before 4.1.1 on Cisco Aggregation Services Routers (ASR) 9000 series dev...
CVE-2011-2547The web-based management interface on Cisco SA 500 series security appliances with software before 2.1.19 allows remote ...
CVE-2011-2546SQL injection vulnerability in the web-based management interface on Cisco SA 500 series security appliances with softwa...
CVE-2011-2492The bluetooth subsystem in the Linux kernel before 3.0-rc4 does not properly initialize certain data structures, which a...
CVE-2011-2958Multiple cross-site scripting (XSS) vulnerabilities in Ecava IntegraXor before 3.60 (Build 4080) allow remote attackers ...
CVE-2011-2957Unspecified vulnerability in Rockwell Automation FactoryTalk Diagnostics Viewer before V2.30.00 (CPR9 SR3) allows local ...
CVE-2011-2956AzeoTech DAQFactory before 5.85 (Build 1842) does not perform authentication for certain signals, which allows remote at...
CVE-2011-2747Google Picasa before 3.6 Build 105.67 does not properly handle invalid properties in JPEG images, which allows remote at...
CVE-2011-2688SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HT...
CVE-2011-1339Cross-site scripting (XSS) vulnerability in Google Search Appliance before 5.0 allows remote attackers to inject arbitra...
CVE-2011-2893The DataPilot feature in IBM Lotus Symphony 3 before FP3 allows user-assisted remote attackers to cause a denial of serv...
CVE-2011-2892Joomla! 1.6.x before 1.6.2 does not prevent page rendering inside a frame in a third-party HTML document, which makes it...
CVE-2011-2891Joomla! 1.6.x before 1.6.2 allows remote attackers to obtain sensitive information via an empty Itemid array parameter t...
CVE-2011-2890The MediaViewMedia class in administrator/components/com_media/views/media/view.html.php in Joomla! 1.5.23 and earlier a...
CVE-2011-2889templates/system/error.php in Joomla! before 1.5.23 might allow remote attackers to obtain sensitive information via uns...
CVE-2011-2888IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application hang) via complex grap...
CVE-2011-2887IBM Lotus Symphony 3 before FP3 on Linux allows remote attackers to cause a denial of service (application crash) via a ...
CVE-2011-2886IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application crash) via a .docx doc...
CVE-2011-2885IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application crash) via the sample ...
CVE-2011-2884Multiple unspecified vulnerabilities in IBM Lotus Symphony 3 before FP3 have unknown impact and attack vectors, related ...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now