2012 CVE Vulnerabilities
5,939 CVEs published in 2012.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2012-4406 | CRITICAL | 9.8 | 6.5% | Oct 22, 2012 | OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing ... |
| CVE-2012-3152 | CRITICAL | 9.1 | 98.7% | Oct 16, 2012 | Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and ... |
| CVE-2012-5076 | CRITICAL | 9.8 | 91.0% | Oct 16, 2012 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allow... |
| CVE-2012-5376 | CRITICAL | 9.6 | 2.1% | Oct 11, 2012 | The Inter-process Communication (IPC) implementation in Google Chrome before 22.0.1229.94 allows remote attackers to byp... |
| CVE-2012-4681 | CRITICAL | 9.8 | 98.5% | Aug 28, 2012 | Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow ... |
| CVE-2012-3503 | CRITICAL | 9.8 | 3.0% | Aug 25, 2012 | The installation script in Katello 1.0 and earlier does not properly generate the Application.config.secret_token value,... |
| CVE-2012-0911 | CRITICAL | 9.8 | 63.0% | Jul 12, 2012 | TikiWiki CMS/Groupware before 6.7 LTS and before 8.4 allows remote attackers to execute arbitrary PHP code via a crafted... |
| CVE-2012-1891 | CRITICAL | 9.8 | 29.4% | Jul 10, 2012 | Heap-based buffer overflow in Microsoft Data Access Components (MDAC) 2.8 SP1 and SP2 and Windows Data Access Components... |
| CVE-2012-1723 | CRITICAL | 9.8 | 93.7% | Jun 16, 2012 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 up... |
| CVE-2012-0507 | CRITICAL | 9.8 | 98.2% | Jun 7, 2012 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Up... |
| CVE-2012-2926 | CRITICAL | 9.1 | 66.6% | May 22, 2012 | Atlassian JIRA before 5.0.1; Confluence before 3.5.16, 4.0 before 4.0.7, and 4.1 before 4.1.10; FishEye and Crucible bef... |
| CVE-2012-1823 | CRITICAL | 9.8 | 100.0% | May 11, 2012 | sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI script (aka php-cgi), does not... |
| CVE-2012-1516 | CRITICAL | 9.9 | 3.2% | May 4, 2012 | The VMX process in VMware ESXi 3.5 through 4.1 and ESX 3.5 through 4.1 does not properly handle RPC commands, which allo... |
| CVE-2012-1710 | CRITICAL | 9.8 | 11.3% | May 3, 2012 | Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware 10.1.3.5 allow... |
| CVE-2012-0931 | CRITICAL | 9.8 | 4.9% | Jan 28, 2012 | Schneider Electric Modicon Quantum PLC does not perform authentication between the Unity software and PLC, which allows ... |
| CVE-2012-0391 | CRITICAL | 9.8 | 75.1% | Jan 8, 2012 | The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL expressions during ... |
Check if your code is affected by 2012 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now