2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-4155Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 9.0x and 9.1x allows remote attackers to in...
CVE-2011-4456Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2011-4313. Reason: This candidate is a reservation ...
CVE-2011-4158Unspecified vulnerability in HP Directories Support for ProLiant Management Processors 3.10 and 3.20 for Integrated Ligh...
CVE-2011-4157Stack-based buffer overflow in hydra.exe in HP SAN/iQ before 9.5 on the HP StorageWorks P4000 Virtual SAN Appliance allo...
CVE-2011-1516The kSBXProfileNoNetwork and kSBXProfileNoInternet sandbox profiles in Apple Mac OS X 10.5.x through 10.7.x do not propa...
CVE-2011-4118Mahara before 1.4.1, when MNet (aka the Moodle network feature) is used, allows remote authenticated users to gain privi...
CVE-2011-2774The "Reply to message" feature in Mahara 1.3.x and 1.4.x before 1.4.1 allows remote authenticated users to read the mess...
CVE-2011-2773Cross-site request forgery (CSRF) vulnerability in Mahara before 1.4.1 allows remote attackers to hijack the authenticat...
CVE-2011-2772The get_dataroot_image_path function in lib/file.php in Mahara before 1.4.1 does not properly validate uploaded image fi...
CVE-2011-2771Multiple cross-site scripting (XSS) vulnerabilities in Mahara before 1.4.1 allow remote attackers to inject arbitrary we...
CVE-2011-4436Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface on the Dell KACE K2000 System De...
CVE-2011-4048The Dell KACE K2000 System Deployment Appliance has a default username and password for the read-only reporting account,...
CVE-2011-4047The Dell KACE K2000 System Deployment Appliance allows remote attackers to execute arbitrary commands by leveraging data...
CVE-2011-4046The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, w...
CVE-2011-4435The web-server component in the Consolidation and Analysis Engine (CAE) Server in DB2 Query Monitor in IBM DB2 Tools 2.3...
CVE-2011-4434Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which al...
CVE-2011-3376org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict Conta...
CVE-2011-1375IBM AIX 6.1 and 7.1 does not restrict the wpar_limits_config and wpar_limits_modify system calls, which allows local use...
CVE-2011-3442The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which al...
CVE-2011-3441libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obta...
CVE-2011-3440The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which al...
CVE-2011-3439FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2011-2460Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11...
CVE-2011-2459Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11...
CVE-2011-2458Adobe Flash Player before 10.3.183.11 and 11.x before 11.1.102.55 on Windows, Mac OS X, Linux, and Solaris and before 11...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now