2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-3655 | — | — | 1.9% | Nov 9, 2011 | Mozilla Firefox 4.x through 7.0 and Thunderbird 5.0 through 7.0 perform access control without checking for use of the N... |
| CVE-2011-3654 | — | — | 4.4% | Nov 9, 2011 | The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly handle links from SVG mpat... |
| CVE-2011-3653 | — | — | 1.0% | Nov 9, 2011 | Mozilla Firefox before 8.0 and Thunderbird before 8.0 on Mac OS X do not properly interact with the GPU memory behavior ... |
| CVE-2011-3652 | — | — | 3.2% | Nov 9, 2011 | The browser engine in Mozilla Firefox before 8.0 and Thunderbird before 8.0 does not properly allocate memory, which all... |
| CVE-2011-3651 | — | — | 5.7% | Nov 9, 2011 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 7.0 and Thunderbird 7.0 allow remote attac... |
| CVE-2011-3650 | — | — | 2.3% | Nov 9, 2011 | Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 do not properly handl... |
| CVE-2011-3649 | — | — | 0.9% | Nov 9, 2011 | Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D (aka D2D) API is used on Windows in conjunction with the Azur... |
| CVE-2011-3648 | — | — | 1.5% | Nov 9, 2011 | Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1... |
| CVE-2011-3647 | — | — | 1.9% | Nov 9, 2011 | The JSSubScriptLoader in Mozilla Firefox before 3.6.24 and Thunderbird before 3.1.6 does not properly handle XPCNativeWr... |
| CVE-2011-4000 | — | — | 4.2% | Nov 8, 2011 | Buffer overflow in ChaSen 2.4.x allows remote attackers to execute arbitrary code via a crafted string. |
| CVE-2011-2449 | — | — | 3.7% | Nov 8, 2011 | The TextXtra module in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a de... |
| CVE-2011-2448 | — | — | 3.7% | Nov 8, 2011 | The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a den... |
| CVE-2011-2447 | — | — | 3.7% | Nov 8, 2011 | Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a denial of service (memory... |
| CVE-2011-2446 | — | — | 3.7% | Nov 8, 2011 | The DIRapi library in Adobe Shockwave Player before 11.6.3.633 allows attackers to execute arbitrary code or cause a den... |
| CVE-2011-2014 | — | — | 11.0% | Nov 8, 2011 | The LDAP over SSL (aka LDAPS) implementation in Active Directory, Active Directory Application Mode (ADAM), and Active D... |
| CVE-2011-2004 | — | — | 24.6% | Nov 8, 2011 | Array index error in win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 ... |
| CVE-2011-4415 | — | — | 3.1% | Nov 8, 2011 | The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when t... |
| CVE-2011-3607 | — | — | 4.7% | Nov 8, 2011 | Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x th... |
| CVE-2011-3169 | — | — | 2.1% | Nov 7, 2011 | Unspecified vulnerability in the SMTP service implementation in HP TCP/IP Services 5.6 and 5.7 for OpenVMS allows remote... |
| CVE-2011-3168 | — | — | 2.0% | Nov 7, 2011 | Unspecified vulnerability in the POP and IMAP service implementations in HP TCP/IP Services 5.6 and 5.7 for OpenVMS allo... |
| CVE-2011-4066 | — | — | 1.7% | Nov 4, 2011 | SQL injection vulnerability in bbs/tb.php in Gnuboard 4.33.02 and earlier allows remote attackers to execute arbitrary S... |
| CVE-2011-3991 | — | — | 2.3% | Nov 4, 2011 | Untrusted search path vulnerability in FFFTP 1.98a and earlier allows local users to execute arbitrary code via unspecif... |
| CVE-2011-3989 | — | — | 1.1% | Nov 4, 2011 | SQL injection vulnerability in DBD::mysqlPP 0.04 and earlier allows remote attackers to execute arbitrary SQL commands v... |
| CVE-2011-3616 | — | — | 0.4% | Nov 4, 2011 | The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files v... |
| CVE-2011-3594 | — | — | 3.2% | Nov 4, 2011 | The g_markup_escape_text function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and po... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now