2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-0412 | — | — | 0.4% | Apr 19, 2011 | Oracle Solaris 8, 9, and 10 stores back-out patch files (undo.Z) unencrypted with world-readable permissions under /var/... |
| CVE-2011-1717 | — | — | 0.3% | Apr 18, 2011 | Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which a... |
| CVE-2011-1716 | — | — | 1.3% | Apr 18, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject... |
| CVE-2011-1715 | — | — | 8.9% | Apr 18, 2011 | Directory traversal vulnerability in framework/source/resource/qx/test/part/delay.php in QooxDoo 1.3 and possibly other ... |
| CVE-2011-1714 | — | — | 2.6% | Apr 18, 2011 | Cross-site scripting (XSS) vulnerability in framework/source/resource/qx/test/jsonp_primitive.php in QooxDoo 1.3 and pos... |
| CVE-2011-1518 | — | — | 2.3% | Apr 18, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.4.x before 2.4.10 and 3.x bef... |
| CVE-2011-1496 | — | — | 1.0% | Apr 18, 2011 | tmux 1.3 and 1.4 does not properly drop group privileges, which allows local users to gain utmp group privileges via a f... |
| CVE-2011-1426 | — | — | 5.0% | Apr 18, 2011 | The OpenURLInDefaultBrowser method in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlaye... |
| CVE-2011-1168 | — | — | 2.7% | Apr 18, 2011 | Cross-site scripting (XSS) vulnerability in the KHTMLPart::htmlError function in khtml/khtml_part.cpp in Konqueror in KD... |
| CVE-2011-0286 | — | — | 1.9% | Apr 18, 2011 | Cross-site scripting (XSS) vulnerability in webdesktop/app in the BlackBerry Web Desktop Manager component in Research I... |
| CVE-2011-1179 | — | — | 3.9% | Apr 18, 2011 | The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows remote attackers to cause a deni... |
| CVE-2011-0988 | — | — | 0.3% | Apr 18, 2011 | pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when ru... |
| CVE-2011-0012 | — | — | 0.3% | Apr 18, 2011 | The SPICE Firefox plug-in (spice-xpi) 2.4, 2.3, 2.2, and possibly other versions allows local users to overwrite arbitra... |
| CVE-2011-1655 | — | — | 12.0% | Apr 18, 2011 | The management.asmx module in the Management Web Service in the Unified Network Control (UNC) Server in CA Total Defense... |
| CVE-2011-1654 | — | — | 11.4% | Apr 18, 2011 | Directory traversal vulnerability in the Heartbeat Web Service in CA.Itm.Server.ManagementWS.dll in the Management Serve... |
| CVE-2011-1653 | — | — | 88.7% | Apr 18, 2011 | Multiple SQL injection vulnerabilities in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before S... |
| CVE-2011-1713 | — | — | 11.2% | Apr 15, 2011 | Microsoft msxml.dll, as used in Internet Explorer 8 on Windows 7, allows remote attackers to obtain potentially sensitiv... |
| CVE-2011-1712 | — | — | 1.1% | Apr 15, 2011 | The txXPathNodeUtils::getXSLTId function in txMozillaXPathTreeWalker.cpp and txStandaloneXPathTreeWalker.cpp in Mozilla ... |
| CVE-2011-1302 | — | — | 3.3% | Apr 15, 2011 | Heap-based buffer overflow in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute ar... |
| CVE-2011-1301 | — | — | 3.6% | Apr 15, 2011 | Use-after-free vulnerability in the GPU process in Google Chrome before 10.0.648.205 allows remote attackers to execute ... |
| CVE-2011-1300 | — | — | 3.0% | Apr 15, 2011 | The Program::getActiveUniformMaxLength function in libGLESv2/Program.cpp in libGLESv2.dll in the WebGLES library in Almo... |
| CVE-2011-0195 | — | — | 1.0% | Apr 15, 2011 | The generate-id XPath function in libxslt in Apple iOS 4.3.x before 4.3.2 allows remote attackers to obtain potentially ... |
| CVE-2011-1691 | — | — | 1.6% | Apr 15, 2011 | The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets (CSS) implementation in ... |
| CVE-2011-1533 | — | — | 2.1% | Apr 15, 2011 | Cross-site scripting (XSS) vulnerability on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C3... |
| CVE-2011-1532 | — | — | 3.0% | Apr 15, 2011 | Unspecified vulnerability in the SNMP component on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Pre... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now