2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-4504 | — | — | 1.4% | Nov 22, 2011 | The UPnP IGD implementation in the Pseudo ICS UPnP software on the ZyXEL P-330W allows remote attackers to establish arb... |
| CVE-2011-4503 | — | — | 2.2% | Nov 22, 2011 | The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port ... |
| CVE-2011-4502 | — | — | 5.8% | Nov 22, 2011 | The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-T... |
| CVE-2011-4501 | — | — | 4.4% | Nov 22, 2011 | The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-T... |
| CVE-2011-4500 | — | — | 1.4% | Nov 22, 2011 | The UPnP IGD implementation on the Cisco Linksys WRT54GX with firmware 2.00.05, when UPnP is enabled, configures the SOA... |
| CVE-2011-4499 | — | — | 1.4% | Nov 22, 2011 | The UPnP IGD implementation in the Broadcom UPnP stack on the Cisco Linksys WRT54G with firmware before 4.30.5, WRT54GS ... |
| CVE-2011-4498 | — | — | 0.6% | Nov 21, 2011 | Cross-site request forgery (CSRF) vulnerability in the web console in Zenprise Device Manager 6.x through 6.1.8 allows r... |
| CVE-2011-4497 | — | — | 0.6% | Nov 21, 2011 | QIS_wizard.htm on the ASUS RT-N56U router with firmware before 1.0.1.4o allows remote attackers to obtain the administra... |
| CVE-2011-4496 | — | — | 10.8% | Nov 21, 2011 | Buffer overflow in Aviosoft DTV Player 1.0.1.2 allows remote attackers to execute arbitrary code via a crafted .plf (aka... |
| CVE-2011-4040 | — | — | 65.7% | Nov 21, 2011 | Buffer overflow in MiniSmtp 3.0.11818 in NJStar Communicator allows remote attackers to execute arbitrary code via a cra... |
| CVE-2011-4465 | — | — | 1.1% | Nov 19, 2011 | Cross-site scripting (XSS) vulnerability in IBM Lotus Mobile Connect (LMC) 6.1.4 allows remote attackers to inject arbit... |
| CVE-2011-4404 | — | — | 63.2% | Nov 19, 2011 | The default configuration of the HTTP server in Jetty in vSphere Update Manager in VMware vCenter Update Manager 4.0 bef... |
| CVE-2011-4311 | — | — | 1.6% | Nov 19, 2011 | ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote attackers to bypass intended r... |
| CVE-2011-4159 | — | — | 0.3% | Nov 19, 2011 | Unspecified vulnerability in System Administration Manager (SAM) in EMS before A.04.20.11.04_01 on HP HP-UX B.11.11, B.1... |
| CVE-2011-3849 | — | — | 1.7% | Nov 19, 2011 | Unspecified vulnerability in dxserver before 6279 in CA Directory 8.1 and CA Directory r12 before SP7 CR1 allows remote ... |
| CVE-2011-4457 | — | — | 1.4% | Nov 17, 2011 | OWASP HTML Sanitizer (aka owasp-java-html-sanitizer) before 88, when JavaScript is disabled, allows user-assisted remote... |
| CVE-2011-3900 | — | — | 1.3% | Nov 17, 2011 | Google V8, as used in Google Chrome before 15.0.874.121, allows remote attackers to cause a denial of service or possibl... |
| CVE-2011-4122 | — | — | 1.0% | Nov 17, 2011 | Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to loa... |
| CVE-2011-4096 | — | — | 38.3% | Nov 17, 2011 | The idnsGrokReply function in Squid before 3.1.16 does not properly free memory, which allows remote attackers to cause ... |
| CVE-2011-4073 | — | — | 2.2% | Nov 17, 2011 | Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows r... |
| CVE-2011-3646 | — | — | 1.5% | Nov 17, 2011 | phpmyadmin.css.php in phpMyAdmin 3.4.x before 3.4.6 allows remote attackers to obtain sensitive information via an array... |
| CVE-2011-3627 | — | — | 2.7% | Nov 17, 2011 | The bytecode engine in ClamAV before 0.97.3 allows remote attackers to cause a denial of service (crash) via vectors rel... |
| CVE-2011-3380 | — | — | 2.4% | Nov 17, 2011 | Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto ... |
| CVE-2011-2770 | — | — | 1.2% | Nov 17, 2011 | Cross-site scripting (XSS) vulnerability in man2html.cgi.c in man2html 1.6, and possibly other version, allows remote at... |
| CVE-2011-4156 | — | — | 2.5% | Nov 16, 2011 | Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.0x and 9.1x allows remote attackers to in... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now