2011 CVE Vulnerabilities
4,898 CVEs published in 2011.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2011-2544 | — | — | 4.7% | Sep 23, 2011 | Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier a... |
| CVE-2011-2543 | — | — | 11.8% | Sep 23, 2011 | Buffer overflow in the cuil component in Cisco Telepresence System Integrator C Series 4.x before TC4.2.0 allows remote ... |
| CVE-2011-3210 | — | — | 4.6% | Sep 22, 2011 | The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thr... |
| CVE-2011-3207 | — | — | 5.0% | Sep 22, 2011 | crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easi... |
| CVE-2011-1913 | — | — | 1.6% | Sep 22, 2011 | SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote attackers to e... |
| CVE-2011-2444 | — | — | 2.7% | Sep 22, 2011 | Cross-site scripting (XSS) vulnerability in Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solar... |
| CVE-2011-2430 | — | — | 6.3% | Sep 22, 2011 | Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows... |
| CVE-2011-2429 | — | — | 4.1% | Sep 22, 2011 | Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows... |
| CVE-2011-2428 | — | — | 5.3% | Sep 22, 2011 | Adobe Flash Player before 10.3.183.10 on Windows, Mac OS X, Linux, and Solaris, and before 10.3.186.7 on Android, allows... |
| CVE-2011-2427 | — | — | 6.4% | Sep 22, 2011 | Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10... |
| CVE-2011-2426 | — | — | 8.2% | Sep 22, 2011 | Stack-based buffer overflow in the ActionScript Virtual Machine (AVM) component in Adobe Flash Player before 10.3.183.10... |
| CVE-2011-3578 | — | — | 1.8% | Sep 21, 2011 | Cross-site scripting (XSS) vulnerability in bug_actiongroup_ext_page.php in MantisBT before 1.2.8 allows remote attacker... |
| CVE-2011-3358 | — | — | 1.8% | Sep 21, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in MantisBT before 1.2.8 allow remote attackers to inject arbitrary ... |
| CVE-2011-3357 | — | — | 9.3% | Sep 21, 2011 | Directory traversal vulnerability in bug_actiongroup_ext_page.php in MantisBT before 1.2.8 allows remote attackers to in... |
| CVE-2011-3356 | — | — | 1.8% | Sep 21, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in config_defaults_inc.php in MantisBT before 1.2.8 allow remote att... |
| CVE-2011-3290 | — | — | 2.3% | Sep 21, 2011 | Cisco Identity Services Engine (ISE) before 1.0.4.MR2 has default Oracle database credentials, which allows remote attac... |
| CVE-2011-2938 | — | — | 4.5% | Sep 21, 2011 | Multiple cross-site scripting (XSS) vulnerabilities in filter_api.php in MantisBT before 1.2.7 allow remote attackers to... |
| CVE-2011-2937 | — | — | 2.5% | Sep 21, 2011 | Cross-site scripting (XSS) vulnerability in the UI messages functionality in Roundcube Webmail before 0.5.4 allows remot... |
| CVE-2011-2412 | — | — | 7.5% | Sep 21, 2011 | Unspecified vulnerability in HP Business Service Automation (BSA) Essentials 2.01 allows remote attackers to execute arb... |
| CVE-2011-3577 | — | — | 2.0% | Sep 20, 2011 | IBM WebSphere Commerce 6.x through 6.0.0.11 and 7.x through 7.0.0.3 does not properly implement Activity Token authentic... |
| CVE-2011-3484 | — | — | 1.7% | Sep 20, 2011 | The unxorFrame function in epan/dissectors/packet-opensafety.c in the OpenSafety dissector in Wireshark 1.6.x before 1.6... |
| CVE-2011-3483 | — | — | 5.6% | Sep 20, 2011 | Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed ca... |
| CVE-2011-3482 | — | — | 1.7% | Sep 20, 2011 | The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 ... |
| CVE-2011-3360 | — | — | 35.5% | Sep 20, 2011 | Untrusted search path vulnerability in Wireshark 1.4.x before 1.4.9 and 1.6.x before 1.6.2 allows local users to gain pr... |
| CVE-2011-2672 | — | — | 1.3% | Sep 20, 2011 | Cross-site scripting (XSS) vulnerability in SemanticScuttle before 0.98 allows remote attackers to inject arbitrary web ... |
Check if your code is affected by 2011 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now