2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4091 | — | — | 2.7% | Feb 10, 2014 | The libobby server in inc/server.hpp in libnet6 (aka net6) before 1.3.14 does not perform authentication before checking... |
| CVE-2011-4099 | — | — | 0.4% | Feb 8, 2014 | The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specif... |
| CVE-2011-1773 | — | — | 0.5% | Feb 8, 2014 | virt-v2v before 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to by... |
| CVE-2011-4613 | — | — | 0.9% | Feb 5, 2014 | The X.Org X wrapper (xserver-wrapper.c) in Debian GNU/Linux and Ubuntu Linux does not properly verify the TTY of a user ... |
| CVE-2011-3377 | — | — | 2.2% | Feb 5, 2014 | The web browser plug-in in IcedTea-Web 1.0.x before 1.0.6 and 1.1.x before 1.1.4 allows remote attackers to bypass the S... |
| CVE-2011-2919 | — | — | 1.2% | Feb 5, 2014 | Cross-site scripting (XSS) vulnerability in Spacewalk 1.6, as used in Red Hat Network (RHN) Satellite, allows remote att... |
| CVE-2011-2725 | — | — | 3.0% | Feb 4, 2014 | Directory traversal vulnerability in Ark 4.7.x and earlier allows remote attackers to delete and force the display of ar... |
| CVE-2011-5270 | — | — | 1.8% | Jan 21, 2014 | wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publish_posts capability requirement, which allow... |
| CVE-2011-1936 | — | — | 0.5% | Jan 7, 2014 | Xen, when using x86 Intel processors and the VMX virtualization extension is enabled, does not properly handle cpuid ins... |
| CVE-2011-1780 | — | — | 0.7% | Jan 7, 2014 | The instruction emulation in Xen 3.0.3 allows local SMP guest users to cause a denial of service (host crash) by replaci... |
| CVE-2011-1763 | — | — | 0.6% | Jan 7, 2014 | The get_free_port function in Xen allows local authenticated DomU users to cause a denial of service or possibly gain pr... |
| CVE-2011-1166 | — | — | 0.7% | Jan 7, 2014 | Xen, possibly before 4.0.2, allows local 64-bit PV guests to cause a denial of service (host crash) by specifying user m... |
| CVE-2011-5269 | — | — | 1.1% | Jan 2, 2014 | Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 allows remote authenticated users to inject arbitr... |
| CVE-2011-2519 | — | — | 0.7% | Dec 27, 2013 | Xen in the Linux kernel, when running a guest on a host without hardware assisted paging (HAP), allows guest users to ca... |
| CVE-2011-5268 | — | — | 1.5% | Dec 24, 2013 | connection.c in Bip before 0.8.9 does not properly close sockets, which allows remote attackers to cause a denial of ser... |
| CVE-2011-4971 | — | — | 22.3% | Dec 12, 2013 | Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth, (3) process_bin... |
| CVE-2011-4351 | — | — | 3.3% | Dec 9, 2013 | Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote att... |
| CVE-2011-3950 | — | — | 2.0% | Dec 9, 2013 | The dirac_decode_data_unit function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an un... |
| CVE-2011-3949 | — | — | 2.0% | Dec 9, 2013 | The dirac_unpack_idwt_params function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an ... |
| CVE-2011-3946 | — | — | 5.7% | Dec 9, 2013 | The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspec... |
| CVE-2011-3944 | — | — | 2.4% | Dec 9, 2013 | The smacker_decode_header_tree function in libavcodec/smacker.c in FFmpeg before 0.10 allows remote attackers to have an... |
| CVE-2011-3941 | — | — | 2.3% | Dec 9, 2013 | The decode_mb function in libavcodec/error_resilience.c in FFmpeg before 0.10 allows remote attackers to have an unspeci... |
| CVE-2011-3935 | — | — | 2.0% | Dec 9, 2013 | The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact vi... |
| CVE-2011-3934 | — | — | 2.0% | Dec 9, 2013 | Double free vulnerability in the vp3_update_thread_context function in libavcodec/vp3.c in FFmpeg before 0.10 allows rem... |
| CVE-2011-5267 | — | — | 1.9% | Nov 5, 2013 | Multiple cross-site scripting (XSS) vulnerabilities in spell-check-savedicts.php in the SpellChecker module in Xinha, as... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now