2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-3619 | — | — | 0.5% | Jun 8, 2013 | The apparmor_setprocattr function in security/apparmor/lsm.c in the Linux kernel before 3.0 does not properly handle inv... |
| CVE-2011-3593 | — | — | 1.0% | Jun 8, 2013 | A certain Red Hat patch to the vlan_hwaccel_do_receive function in net/8021q/vlan_core.c in the Linux kernel 2.6.32 on R... |
| CVE-2011-3347 | — | — | 0.8% | Jun 8, 2013 | A certain Red Hat patch to the be2net implementation in the kernel package before 2.6.32-218.el6 on Red Hat Enterprise L... |
| CVE-2011-2942 | — | — | 1.8% | Jun 8, 2013 | A certain Red Hat patch to the __br_deliver function in net/bridge/br_forward.c in the Linux kernel 2.6.18 on Red Hat En... |
| CVE-2011-2693 | — | — | 0.3% | Jun 8, 2013 | The perf subsystem in the kernel package 2.6.32-122.el6.x86_64 in Red Hat Enterprise Linux (RHEL) 6 does not properly ha... |
| CVE-2011-1585 | — | — | 0.5% | Jun 8, 2013 | The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the as... |
| CVE-2011-4604 | — | — | 3.0% | Jun 7, 2013 | The bat_socket_read function in net/batman-adv/icmp_socket.c in the Linux kernel before 3.3 allows remote attackers to c... |
| CVE-2011-4520 | — | — | 2.3% | May 23, 2013 | Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a ... |
| CVE-2011-4519 | — | — | 2.3% | May 23, 2013 | Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a... |
| CVE-2011-4518 | — | — | 26.4% | May 23, 2013 | Directory traversal vulnerability in the PmWebDir object in the web server in MICROSYS PROMOTIC before 8.1.5 allows remo... |
| CVE-2011-4609 | — | — | 1.8% | May 2, 2013 | The svc_run function in the RPC implementation in glibc before 2.15 allows remote attackers to cause a denial of service... |
| CVE-2011-4515 | — | — | 0.4% | Mar 21, 2013 | Siemens WinCC (TIA Portal) 11 uses a reversible algorithm for storing HMI web-application passwords in world-readable an... |
| CVE-2011-4966 | — | — | 1.4% | Mar 12, 2013 | modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not prop... |
| CVE-2011-1165 | — | — | 2.3% | Mar 12, 2013 | Vino, possibly before 3.2, does not properly document that it opens ports in UPnP routers when the "Configure network to... |
| CVE-2011-1164 | — | — | 1.6% | Mar 12, 2013 | Vino before 2.99.4 can connect external networks contrary to the statement in the vino-preferences dialog box, which mig... |
| CVE-2011-4969 | — | — | 19.2% | Mar 8, 2013 | Cross-site scripting (XSS) vulnerability in jQuery before 1.6.3, when using location.hash to select elements, allows rem... |
| CVE-2011-2504 | — | — | 0.4% | Mar 8, 2013 | Untrusted search path vulnerability in x11perfcomp in XFree86 x11perf before 1.5.4 allows local users to gain privileges... |
| CVE-2011-3201 | — | — | 2.7% | Mar 8, 2013 | GNOME Evolution before 3.2.3 allows user-assisted remote attackers to read arbitrary files via the attachment parameter ... |
| CVE-2011-4318 | — | — | 1.3% | Mar 7, 2013 | Dovecot 2.0.x before 2.0.16, when ssl or starttls is enabled and hostname is used to define the proxy destination, does ... |
| CVE-2011-4355 | — | — | 0.4% | Mar 5, 2013 | GNU Project Debugger (GDB) before 7.5, when .debug_gdb_scripts is defined, automatically loads certain files from the cu... |
| CVE-2011-3638 | — | — | 0.4% | Mar 1, 2013 | fs/ext4/extents.c in the Linux kernel before 3.0 does not mark a modified extent as dirty in certain cases of extent spl... |
| CVE-2011-2905 | — | — | 0.4% | Mar 1, 2013 | Untrusted search path vulnerability in the perf_config function in tools/perf/util/config.c in perf, as distributed in t... |
| CVE-2011-2491 | — | — | 0.4% | Mar 1, 2013 | The Network Lock Manager (NLM) protocol implementation in the NFS client functionality in the Linux kernel before 3.0 al... |
| CVE-2011-1182 | — | — | 0.5% | Mar 1, 2013 | kernel/signal.c in the Linux kernel before 2.6.39 allows local users to spoof the uid and pid of a signal sender via a s... |
| CVE-2011-1019 | — | — | 0.4% | Mar 1, 2013 | The dev_load function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAP_S... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now