2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-1472 | — | — | 0.3% | Mar 29, 2011 | The Nokia E75 phone with firmware before 211.12.01 allows physically proximate attackers to bypass the Device Lock code ... |
| CVE-2011-1205 | — | — | 0.4% | Mar 29, 2011 | Multiple buffer overflows in unspecified COM objects in Rational Common Licensing 7.0 through 7.1.1.4 in IBM Rational Cl... |
| CVE-2011-1176 | — | — | 2.7% | Mar 29, 2011 | The configuration merger in itk.c in the Steinar H. Gunderson mpm-itk Multi-Processing Module 2.2.11-01 and 2.2.11-02 fo... |
| CVE-2011-0892 | — | — | 1.8% | Mar 29, 2011 | Cross-site scripting (XSS) vulnerability in HP Diagnostics 7.5x and 8.0x before 8.05.54.225 allows remote attackers to i... |
| CVE-2011-0728 | — | — | 1.8% | Mar 29, 2011 | Cross-site scripting (XSS) vulnerability in templatefunctions.py in Loggerhead before 1.18.1 allows remote authenticated... |
| CVE-2011-0441 | — | — | 0.3% | Mar 29, 2011 | The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink ... |
| CVE-2011-1524 | — | — | 4.2% | Mar 28, 2011 | Cross-site scripting (XSS) vulnerability in the management login GUI page in Symantec LiveUpdate Administrator (LUA) bef... |
| CVE-2011-1420 | — | — | 0.4% | Mar 28, 2011 | EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified fil... |
| CVE-2011-1167 | — | — | 6.2% | Mar 28, 2011 | Heap-based buffer overflow in the thunder (aka ThunderScan) decoder in tif_thunder.c in LibTIFF 3.9.4 and earlier allows... |
| CVE-2011-0760 | — | — | 1.0% | Mar 28, 2011 | Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration screen in wp-relatedposts.php in the WP ... |
| CVE-2011-0545 | — | — | 2.9% | Mar 28, 2011 | Cross-site request forgery (CSRF) vulnerability in adduser.do in Symantec LiveUpdate Administrator (LUA) before 2.3 allo... |
| CVE-2011-0458 | — | — | 0.3% | Mar 28, 2011 | Untrusted search path vulnerability in the Locate on Disk feature in Google Picasa before 3.8 allows local users to gain... |
| CVE-2011-0440 | — | — | 1.0% | Mar 28, 2011 | Cross-site request forgery (CSRF) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attack... |
| CVE-2011-0439 | — | — | 1.9% | Mar 28, 2011 | Cross-site scripting (XSS) vulnerability in Mahara 1.2.x before 1.2.7 and 1.3.x before 1.3.4 allows remote attackers to ... |
| CVE-2011-0024 | — | — | 5.0% | Mar 28, 2011 | Heap-based buffer overflow in wiretap/pcapng.c in Wireshark before 1.2 allows remote attackers to cause a denial of serv... |
| CVE-2011-1520 | — | — | 0.5% | Mar 25, 2011 | The default configuration of the server console in IBM Lotus Domino does not require a password (aka Server_Console_Pass... |
| CVE-2011-1519 | — | — | 9.2% | Mar 25, 2011 | The remote console in the Server Controller in IBM Lotus Domino 7.x and 8.x verifies credentials against a file located ... |
| CVE-2011-1400 | — | — | 4.1% | Mar 25, 2011 | The default configuration of the shell_escape_commands directive in conf/texmf.d/95NonPath.cnf in the tex-common package... |
| CVE-2011-1296 | — | — | 2.0% | Mar 25, 2011 | Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of ... |
| CVE-2011-1295 | — | — | 1.8% | Mar 25, 2011 | WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parent... |
| CVE-2011-1294 | — | — | 1.6% | Mar 25, 2011 | Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows re... |
| CVE-2011-1293 | — | — | 2.0% | Mar 25, 2011 | Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote att... |
| CVE-2011-1292 | — | — | 1.8% | Mar 25, 2011 | Use-after-free vulnerability in the frame-loader implementation in Google Chrome before 10.0.648.204 allows remote attac... |
| CVE-2011-1291 | — | — | 1.7% | Mar 25, 2011 | Google Chrome before 10.0.648.204 does not properly handle base strings, which allows remote attackers to cause a denial... |
| CVE-2011-0890 | — | — | 2.5% | Mar 25, 2011 | HP Discovery & Dependency Mapping Inventory (DDMI) 7.50, 7.51, 7.60, 7.61, 7.70, and 9.30 launches the Windows SNMP serv... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now