2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-1370 | — | — | 1.1% | Oct 29, 2011 | The default configuration of the Sametime configuration servlet (SCS) in the server in IBM Lotus Sametime 7.0 through 8.... |
| CVE-2011-1368 | — | — | 1.9% | Oct 29, 2011 | The JavaServer Faces (JSF) application functionality in IBM WebSphere Application Server 8.x before 8.0.0.1 does not pro... |
| CVE-2011-3640 | — | — | 1.4% | Oct 28, 2011 | Untrusted search path vulnerability in Mozilla Network Security Services (NSS), as used in Google Chrome before 17 on Wi... |
| CVE-2011-3251 | — | — | 3.6% | Oct 28, 2011 | Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (... |
| CVE-2011-3250 | — | — | 4.8% | Oct 28, 2011 | Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of ... |
| CVE-2011-3249 | — | — | 5.1% | Oct 28, 2011 | Buffer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of s... |
| CVE-2011-3248 | — | — | 4.5% | Oct 28, 2011 | Integer signedness error in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a de... |
| CVE-2011-3247 | — | — | 3.7% | Oct 28, 2011 | Integer overflow in Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a... |
| CVE-2011-2830 | — | — | 1.2% | Oct 28, 2011 | Google V8, as used in Google Chrome before 14.0.835.163, does not properly implement script object wrappers, which allow... |
| CVE-2011-1371 | — | — | 0.8% | Oct 28, 2011 | Cross-site scripting (XSS) vulnerability in content/error.jsp in IBM WebSphere ILOG Rule Team Server 7.1.1 allows remote... |
| CVE-2011-1360 | — | — | 1.7% | Oct 28, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in IBM HTTP Server 2.0.47 and earlier, as used in WebSphere Applicat... |
| CVE-2011-4004 | — | — | 3.8% | Oct 27, 2011 | Buffer overflow in the ATAS32 processing functionality in the Cisco WebEx Recording Format (WRF) player T26 before SP49 ... |
| CVE-2011-3319 | — | — | 3.0% | Oct 27, 2011 | Buffer overflow in the WRF parsing functionality in the Cisco WebEx Recording Format (WRF) player T26 before SP49 EP40 a... |
| CVE-2011-3318 | — | — | 1.2% | Oct 27, 2011 | Cisco Video Surveillance 2421 and 2500 series cameras with software 1.1.x and 2.x before 2.4.0 and Video Surveillance 26... |
| CVE-2011-3315 | — | — | 26.4% | Oct 27, 2011 | Directory traversal vulnerability in Cisco Unified Communications Manager (CUCM) 5.x and 6.x before 6.1(5)SU2, 7.x befor... |
| CVE-2011-2569 | — | — | 0.3% | Oct 27, 2011 | Cisco Nexus OS (aka NX-OS) 4.2 and 5.0 and Cisco Unified Computing System with software 1.4 and 2.0 do not properly rest... |
| CVE-2011-4079 | — | — | 3.7% | Oct 27, 2011 | Off-by-one error in the UTF8StringNormalize function in OpenLDAP 2.4.26 and earlier allows remote attackers to cause a d... |
| CVE-2011-3872 | — | — | 2.4% | Oct 27, 2011 | Puppet 2.6.x before 2.6.12 and 2.7.x before 2.7.6, and Puppet Enterprise (PE) Users 1.0, 1.1, and 1.2 before 1.2.4, when... |
| CVE-2011-3871 | — | — | 0.3% | Oct 27, 2011 | Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x, when running in --edit mode, uses a predictable file name, w... |
| CVE-2011-3870 | — | — | 0.4% | Oct 27, 2011 | Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to modify the permissions of arbitrary fil... |
| CVE-2011-3869 | — | — | 0.3% | Oct 27, 2011 | Puppet 2.7.x before 2.7.5, 2.6.x before 2.6.11, and 0.25.x allows local users to overwrite arbitrary files via a symlink... |
| CVE-2011-3848 | — | — | 1.1% | Oct 27, 2011 | Directory traversal vulnerability in Puppet 2.6.x before 2.6.10 and 2.7.x before 2.7.4 allows remote attackers to write ... |
| CVE-2011-3891 | — | — | 1.2% | Oct 25, 2011 | Google Chrome before 15.0.874.102 does not properly restrict access to internal Google V8 functions, which allows remote... |
| CVE-2011-3890 | — | — | 1.1% | Oct 25, 2011 | Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows remote attackers to cause a denial of service o... |
| CVE-2011-3889 | — | — | 1.2% | Oct 25, 2011 | Heap-based buffer overflow in the Web Audio implementation in Google Chrome before 15.0.874.102 allows remote attackers ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now