2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-3634 | — | — | 0.8% | Mar 1, 2014 | methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails validation and Verify-Hos... |
| CVE-2011-4580 | — | — | 1.0% | Feb 26, 2014 | Multiple cross-site scripting (XSS) vulnerabilities in Red Hat JBoss Enterprise Portal Platform before 5.2.0 allow remot... |
| CVE-2011-4111 | — | — | 2.3% | Feb 26, 2014 | Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x... |
| CVE-2011-2941 | — | — | 1.1% | Feb 26, 2014 | Open redirect vulnerability in Red Hat JBoss Enterprise Portal Platform before 5.2.0 allows remote attackers to redirect... |
| CVE-2011-1749 | — | — | 0.4% | Feb 26, 2014 | The nfs_addmntent function in support/nfs/nfs_mntent.c in the mount.nsf tool in nfs-utils before 1.2.4 attempts to appen... |
| CVE-2011-4083 | — | — | 1.0% | Feb 17, 2014 | The sosreport utility in the Red Hat sos package before 1.7-9 and 2.x before 2.2-17 includes (1) Certificate-based Red H... |
| CVE-2011-3605 | — | — | 1.6% | Feb 17, 2014 | The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when UnicastOnly is enabled, allows rem... |
| CVE-2011-3604 | — | — | 1.6% | Feb 17, 2014 | The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denia... |
| CVE-2011-3601 | — | — | 4.0% | Feb 17, 2014 | Buffer overflow in the process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attacke... |
| CVE-2011-0528 | — | — | 1.7% | Feb 17, 2014 | Puppet 2.6.0 through 2.6.3 does not properly restrict access to node resources, which allows remote authenticated Puppet... |
| CVE-2011-3590 | — | — | 0.6% | Feb 15, 2014 | The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.... |
| CVE-2011-3589 | — | — | 0.5% | Feb 15, 2014 | The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.... |
| CVE-2011-3588 | — | — | 0.5% | Feb 15, 2014 | The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102... |
| CVE-2011-2909 | — | — | 0.4% | Feb 15, 2014 | The do_devinfo_ioctl function in drivers/staging/comedi/comedi_fops.c in the Linux kernel before 3.1 allows local users ... |
| CVE-2011-2500 | — | — | 2.5% | Feb 15, 2014 | The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to ... |
| CVE-2011-1837 | — | — | 0.4% | Feb 15, 2014 | The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to over... |
| CVE-2011-1836 | — | — | 0.4% | Feb 15, 2014 | utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, whic... |
| CVE-2011-1835 | — | — | 0.4% | Feb 15, 2014 | The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not prope... |
| CVE-2011-1834 | — | — | 0.4% | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditi... |
| CVE-2011-1832 | — | — | 0.4% | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows ... |
| CVE-2011-1831 | — | — | 0.4% | Feb 15, 2014 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows ... |
| CVE-2011-4610 | — | — | 2.2% | Feb 10, 2014 | JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterpri... |
| CVE-2011-4930 | — | — | 0.6% | Feb 10, 2014 | Multiple format string vulnerabilities in Condor 7.2.0 through 7.6.4, and possibly certain 7.7.x versions, as used in Re... |
| CVE-2011-4093 | — | — | 1.8% | Feb 10, 2014 | Integer overflow in inc/server.hpp in libnet6 (aka net6) before 1.3.14 might allow remote attackers to hijack connection... |
| CVE-2011-4092 | — | — | 0.8% | Feb 10, 2014 | obby (aka libobby) does not verify SSL server certificates, which allows remote attackers to spoof servers via an arbitr... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now