2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4327 | MEDIUM | 5.5 | 0.4% | Feb 3, 2014 | ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open ... |
| CVE-2011-2479 | MEDIUM | 5.5 | 0.5% | Mar 1, 2013 | The Linux kernel before 2.6.39 does not properly create transparent huge pages in response to a MAP_PRIVATE mmap system ... |
| CVE-2011-4081 | MEDIUM | 5.5 | 0.5% | May 24, 2012 | crypto/ghash-generic.c in the Linux kernel before 3.1 allows local users to cause a denial of service (NULL pointer dere... |
| CVE-2011-3363 | MEDIUM | 6.5 | 0.8% | May 24, 2012 | The setup_cifs_sb function in fs/cifs/connect.c in the Linux kernel before 2.6.39 does not properly handle DFS referrals... |
| CVE-2011-3353 | MEDIUM | 5.5 | 0.4% | May 24, 2012 | Buffer overflow in the fuse_notify_inval_entry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local use... |
| CVE-2011-2918 | MEDIUM | 5.5 | 0.9% | May 24, 2012 | The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overflows associated with... |
| CVE-2011-2906 | MEDIUM | 5.5 | 0.5% | May 24, 2012 | Integer signedness error in the pmcraid_ioctl_passthrough function in drivers/scsi/pmcraid.c in the Linux kernel before ... |
| CVE-2011-2898 | MEDIUM | 5.5 | 0.4% | May 24, 2012 | net/packet/af_packet.c in the Linux kernel before 2.6.39.3 does not properly restrict user-space access to certain packe... |
| CVE-2011-2707 | MEDIUM | 6 | 0.4% | May 24, 2012 | The ptrace_setxregs function in arch/xtensa/kernel/ptrace.c in the Linux kernel before 3.1 does not validate user-space ... |
| CVE-2011-4621 | MEDIUM | 5.5 | 0.4% | May 17, 2012 | The Linux kernel before 2.6.37 does not properly implement a certain clock-update optimization, which allows local users... |
| CVE-2011-4594 | MEDIUM | 5.5 | 0.4% | May 17, 2012 | The __sys_sendmsg function in net/socket.c in the Linux kernel before 3.1 allows local users to cause a denial of servic... |
| CVE-2011-4112 | MEDIUM | 5.5 | 0.5% | May 17, 2012 | The net subsystem in the Linux kernel before 3.1 does not properly restrict use of the IFF_TX_SKB_SHARING flag, which al... |
| CVE-2011-4097 | MEDIUM | 5.5 | 0.5% | May 17, 2012 | Integer overflow in the oom_badness function in mm/oom_kill.c in the Linux kernel before 3.1.8 on 64-bit platforms allow... |
| CVE-2011-3637 | MEDIUM | 5.5 | 0.4% | May 17, 2012 | The m_stop function in fs/proc/task_mmu.c in the Linux kernel before 2.6.39 allows local users to cause a denial of serv... |
| CVE-2011-1573 | MEDIUM | 5.9 | 2.8% | Feb 2, 2012 | net/sctp/sm_make_chunk.c in the Linux kernel before 2.6.34, when addip_enable and auth_enable are used, does not conside... |
| CVE-2011-4723 | MEDIUM | 5.7 | 3.1% | Dec 20, 2011 | The D-Link DIR-300 router stores cleartext passwords, which allows context-dependent attackers to obtain sensitive infor... |
| CVE-2011-4107 | MEDIUM | 6.5 | 12.9% | Nov 17, 2011 | The simplexml_load_string function in the XML import plug-in (libraries/import/xml.php) in phpMyAdmin 3.4.x before 3.4.7... |
| CVE-2011-1776 | MEDIUM | 6.1 | 0.5% | Sep 6, 2011 | The is_gpt_valid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensi... |
| CVE-2011-2691 | MEDIUM | 6.5 | 3.7% | Jul 17, 2011 | The png_err function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x bef... |
| CVE-2011-2501 | MEDIUM | 6.5 | 3.4% | Jul 17, 2011 | The png_format_buffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and... |
| CVE-2011-0199 | MEDIUM | 5.9 | 0.8% | Jun 24, 2011 | The Certificate Trust Policy component in Apple Mac OS X before 10.6.8 does not perform CRL checking for Extended Valida... |
| CVE-2011-1252 | MEDIUM | 6.1 | 14.0% | Jun 16, 2011 | Cross-site scripting (XSS) vulnerability in the SafeHTML function in the toStaticHTML API in Microsoft Internet Explorer... |
| CVE-2011-0737 | MEDIUM | 5.3 | 2.8% | Feb 1, 2011 | Adobe ColdFusion 9.0.1 CHF1 and earlier allows remote attackers to obtain sensitive information via an id=- query to a .... |
| CVE-2011-0736 | MEDIUM | 5.3 | 2.7% | Feb 1, 2011 | Adobe ColdFusion 9.0.1 CHF1 and earlier, when a web application is configured to use a DBMS, allows remote attackers to ... |
| CVE-2011-0096 | MEDIUM | 6.1 | 46.8% | Jan 31, 2011 | The MHTML protocol handler in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Wind... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now