2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-3256 | — | — | 4.1% | Oct 14, 2011 | FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other... |
| CVE-2011-3255 | — | — | 1.7% | Oct 14, 2011 | CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote atta... |
| CVE-2011-3254 | — | — | 1.3% | Oct 14, 2011 | Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary w... |
| CVE-2011-3253 | — | — | 0.6% | Oct 14, 2011 | CalDAV in Apple iOS before 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle attac... |
| CVE-2011-3246 | — | — | 3.0% | Oct 14, 2011 | CFNetwork in Apple iOS before 5.0.1 and Mac OS X 10.7 before 10.7.2 does not properly parse URLs, which allows remote at... |
| CVE-2011-3245 | — | — | 0.4% | Oct 14, 2011 | The Keyboards component in Apple iOS before 5 displays the final character of an entered password during a subsequent us... |
| CVE-2011-3243 | — | — | 2.0% | Oct 14, 2011 | Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote... |
| CVE-2011-3242 | — | — | 1.4% | Oct 14, 2011 | The Private Browsing feature in Apple Safari before 5.1.1 on Mac OS X does not properly recognize the Always value of th... |
| CVE-2011-3231 | — | — | 1.4% | Oct 14, 2011 | The SSL implementation in Apple Safari before 5.1.1 on Mac OS X before 10.7 accesses uninitialized memory during the pro... |
| CVE-2011-3230 | — | — | 50.2% | Oct 14, 2011 | Apple Safari before 5.1.1 on Mac OS X does not enforce an intended policy for file: URLs, which allows remote attackers ... |
| CVE-2011-3229 | — | — | 2.1% | Oct 14, 2011 | Directory traversal vulnerability in Apple Safari before 5.1.1 allows remote attackers to execute arbitrary JavaScript c... |
| CVE-2011-3228 | — | — | 3.2% | Oct 14, 2011 | QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service... |
| CVE-2011-3227 | — | — | 1.8% | Oct 14, 2011 | libsecurity in Apple Mac OS X before 10.7.2 does not properly handle errors during processing of a nonstandard extension... |
| CVE-2011-3226 | — | — | 2.0% | Oct 14, 2011 | Open Directory in Apple Mac OS X 10.7 before 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, all... |
| CVE-2011-3225 | — | — | 1.9% | Oct 14, 2011 | The SMB File Server component in Apple Mac OS X 10.7 before 10.7.2 does not prevent all guest users from accessing the s... |
| CVE-2011-3224 | — | — | 1.8% | Oct 14, 2011 | The User Documentation component in Apple Mac OS X through 10.6.8 uses http sessions for updates to App Store help infor... |
| CVE-2011-3223 | — | — | 3.4% | Oct 14, 2011 | Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause ... |
| CVE-2011-3222 | — | — | 3.4% | Oct 14, 2011 | Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause ... |
| CVE-2011-3221 | — | — | 3.0% | Oct 14, 2011 | QuickTime in Apple Mac OS X before 10.7.2 does not properly handle the atom hierarchy in movie files, which allows remot... |
| CVE-2011-3220 | — | — | 1.9% | Oct 14, 2011 | QuickTime in Apple Mac OS X before 10.7.2 does not properly process URL data handlers in movie files, which allows remot... |
| CVE-2011-3218 | — | — | 1.3% | Oct 14, 2011 | The "Save for Web" selection in QuickTime Player in Apple Mac OS X through 10.6.8 exports HTML documents that contain an... |
| CVE-2011-3217 | — | — | 2.9% | Oct 14, 2011 | MediaKit in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service... |
| CVE-2011-3216 | — | — | 0.3% | Oct 14, 2011 | The kernel in Apple Mac OS X before 10.7.2 does not properly implement the sticky bit for directories, which might allow... |
| CVE-2011-3215 | — | — | 0.4% | Oct 14, 2011 | The kernel in Apple Mac OS X before 10.7.2 does not properly prevent FireWire DMA in the absence of a login, which allow... |
| CVE-2011-3214 | — | — | 0.4% | Oct 14, 2011 | IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now