2011 CVE Vulnerabilities

4,898 CVEs published in 2011.

Filter:UNKNOWNClear
CVE IDSeverityCVSSDescription
CVE-2011-3256FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other...
CVE-2011-3255CFNetwork in Apple iOS before 5 stores AppleID credentials in an unspecified file, which makes it easier for remote atta...
CVE-2011-3254Cross-site scripting (XSS) vulnerability in Calendar in Apple iOS before 5 allows remote attackers to inject arbitrary w...
CVE-2011-3253CalDAV in Apple iOS before 5 does not validate X.509 certificates for SSL sessions, which allows man-in-the-middle attac...
CVE-2011-3246CFNetwork in Apple iOS before 5.0.1 and Mac OS X 10.7 before 10.7.2 does not properly parse URLs, which allows remote at...
CVE-2011-3245The Keyboards component in Apple iOS before 5 displays the final character of an entered password during a subsequent us...
CVE-2011-3243Cross-site scripting (XSS) vulnerability in WebKit, as used in Apple iOS before 5 and Safari before 5.1.1, allows remote...
CVE-2011-3242The Private Browsing feature in Apple Safari before 5.1.1 on Mac OS X does not properly recognize the Always value of th...
CVE-2011-3231The SSL implementation in Apple Safari before 5.1.1 on Mac OS X before 10.7 accesses uninitialized memory during the pro...
CVE-2011-3230Apple Safari before 5.1.1 on Mac OS X does not enforce an intended policy for file: URLs, which allows remote attackers ...
CVE-2011-3229Directory traversal vulnerability in Apple Safari before 5.1.1 allows remote attackers to execute arbitrary JavaScript c...
CVE-2011-3228QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service...
CVE-2011-3227libsecurity in Apple Mac OS X before 10.7.2 does not properly handle errors during processing of a nonstandard extension...
CVE-2011-3226Open Directory in Apple Mac OS X 10.7 before 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, all...
CVE-2011-3225The SMB File Server component in Apple Mac OS X 10.7 before 10.7.2 does not prevent all guest users from accessing the s...
CVE-2011-3224The User Documentation component in Apple Mac OS X through 10.6.8 uses http sessions for updates to App Store help infor...
CVE-2011-3223Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause ...
CVE-2011-3222Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause ...
CVE-2011-3221QuickTime in Apple Mac OS X before 10.7.2 does not properly handle the atom hierarchy in movie files, which allows remot...
CVE-2011-3220QuickTime in Apple Mac OS X before 10.7.2 does not properly process URL data handlers in movie files, which allows remot...
CVE-2011-3218The "Save for Web" selection in QuickTime Player in Apple Mac OS X through 10.6.8 exports HTML documents that contain an...
CVE-2011-3217MediaKit in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service...
CVE-2011-3216The kernel in Apple Mac OS X before 10.7.2 does not properly implement the sticky bit for directories, which might allow...
CVE-2011-3215The kernel in Apple Mac OS X before 10.7.2 does not properly prevent FireWire DMA in the absence of a login, which allow...
CVE-2011-3214IOGraphics in Apple Mac OS X through 10.6.8 does not properly handle a locked-screen state in display sleep mode for an ...

Check if your code is affected by 2011 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now