2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-0759 | — | — | 1.1% | Mar 22, 2011 | Multiple cross-site request forgery (CSRF) vulnerabilities in the configuration page in the Recaptcha (aka WP-reCAPTCHA)... |
| CVE-2011-0331 | — | — | 4.5% | Mar 22, 2011 | Use-after-free vulnerability in the addOSPLext method in the Honeywell ScanServer ActiveX control 780.0.20.5 allows remo... |
| CVE-2011-1471 | — | — | 13.1% | Mar 20, 2011 | Integer signedness error in zip_stream.c in the Zip extension in PHP before 5.3.6 allows context-dependent attackers to ... |
| CVE-2011-1470 | — | — | 9.5% | Mar 20, 2011 | The Zip extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash... |
| CVE-2011-1469 | — | — | 4.3% | Mar 20, 2011 | Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a den... |
| CVE-2011-1468 | — | — | 13.2% | Mar 20, 2011 | Multiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to cause a denial of ser... |
| CVE-2011-1467 | — | — | 12.7% | Mar 20, 2011 | Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PH... |
| CVE-2011-1466 | — | — | 5.7% | Mar 20, 2011 | Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent atta... |
| CVE-2011-1465 | — | — | 1.8% | Mar 20, 2011 | The SPDY implementation in net/http/http_network_transaction.cc in Google Chrome before 11.0.696.14 drains the bodies fr... |
| CVE-2011-1464 | — | — | 2.8% | Mar 20, 2011 | Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, m... |
| CVE-2011-1081 | — | — | 13.5% | Mar 20, 2011 | modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) vi... |
| CVE-2011-1027 | — | — | 3.7% | Mar 20, 2011 | Off-by-one error in the convert_query_hexchar function in html.c in cgit.cgi in cgit before 0.8.3.5 allows remote attack... |
| CVE-2011-1025 | — | — | 4.4% | Mar 20, 2011 | bind.cpp in back-ndb in OpenLDAP 2.4.x before 2.4.24 does not require authentication for the root Distinguished Name (DN... |
| CVE-2011-1024 | — | — | 3.0% | Mar 20, 2011 | chain.c in back-ldap in OpenLDAP 2.4.x before 2.4.24, when a master-slave configuration with a chain overlay and ppolicy... |
| CVE-2011-0708 | — | — | 9.9% | Mar 20, 2011 | exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote att... |
| CVE-2011-0421 | — | — | 13.5% | Mar 20, 2011 | The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a Z... |
| CVE-2011-0284 | — | — | 8.3% | Mar 20, 2011 | Double free vulnerability in the prepare_error_as function in do_as_req.c in the Key Distribution Center (KDC) in MIT Ke... |
| CVE-2011-1433 | — | — | 1.5% | Mar 18, 2011 | The (1) AgentInterface and (2) CustomerInterface components in Open Ticket Request System (OTRS) before 3.0.6 place clea... |
| CVE-2011-1148 | — | — | 4.6% | Mar 18, 2011 | Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers ... |
| CVE-2011-1432 | — | — | 2.3% | Mar 16, 2011 | The STARTTLS implementation in SCO SCOoffice Server does not properly restrict I/O buffering, which allows man-in-the-mi... |
| CVE-2011-1431 | — | — | 4.6% | Mar 16, 2011 | The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in the netqmail-1.06-tls patch for netqmail 1.06 does not pr... |
| CVE-2011-1430 | — | — | 3.2% | Mar 16, 2011 | The STARTTLS implementation in the server in Ipswitch IMail 11.03 and earlier does not properly restrict I/O buffering, ... |
| CVE-2011-1429 | — | — | 1.5% | Mar 16, 2011 | Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, whic... |
| CVE-2011-1428 | — | — | 1.1% | Mar 16, 2011 | Wee Enhanced Environment for Chat (aka WeeChat) 0.3.4 and earlier does not properly verify that the server hostname matc... |
| CVE-2011-1153 | — | — | 6.8% | Mar 16, 2011 | Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dep... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now