|
292601
|
7.5 |
HIGH
Network
|
xml\
|
\
|
It was discovered that the XML::Atom Perl module before version 0.39 did not disable external entities when parsing XML from potentially untrusted sources. This may allow attackers to gain read acces…
|
-
|
CVE-2012-1102
|
2024-11-21 10:36 |
2021-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292602
|
9.8 |
CRITICAL
Network
|
limit_login_attempts_project
|
limit_login_attempts
|
The Limit Login Attempts plugin before 1.7.1 for WordPress does not clear auth cookies upon a lockout, which might make it easier for remote attackers to conduct brute-force authentication attempts.
|
CWE-287
Improper Authentication
|
CVE-2012-10001
|
2024-11-21 10:36 |
2021-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292603
|
7.4 |
HIGH
Network
|
canonical
|
software-properties
|
software-properties was vulnerable to a person-in-the-middle attack due to incorrect TLS certificate validation in softwareproperties/ppa.py. software-properties didn't check TLS certificates under p…
|
CWE-295
Improper Certificate Validation
|
CVE-2012-0955
|
2024-11-21 10:36 |
2020-12-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292604
|
5.0 |
MEDIUM
Local
|
nvidia
|
display_driver
|
A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53.
|
CWE-362
Race Condition
|
CVE-2012-0953
|
2024-11-21 10:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292605
|
5.0 |
MEDIUM
Local
|
nvidia
|
display_driver
|
A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.…
|
CWE-787
Out-of-bounds Write
|
CVE-2012-0952
|
2024-11-21 10:36 |
2020-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292606
|
5.5 |
MEDIUM
Local
|
systemd_project
|
systemd
|
systemd 37-1 does not properly handle non-existent services, which causes a denial of service (failure of login procedure).
|
NVD-CWE-Other
|
CVE-2012-1101
|
2024-11-21 10:36 |
2020-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292607
|
5.5 |
MEDIUM
Local
|
gnome
debian
|
networkmanager
debian_linux
|
NetworkManager 0.9 and earlier allows local users to use other users' certificates or private keys when making a connection via the file path when adding a new connection.
|
CWE-295
Improper Certificate Validation
|
CVE-2012-1096
|
2024-11-21 10:36 |
2020-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292608
|
7.5 |
HIGH
Network
|
redhat
|
jboss_application_server
|
JBoss AS 7 prior to 7.1.1 and mod_cluster do not handle default hostname in the same way, which can cause the excluded-contexts list to be mismatched and the root context to be exposed.
|
CWE-200
Information Exposure
|
CVE-2012-1094
|
2024-11-21 10:36 |
2020-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292609
|
7.8 |
HIGH
Local
|
debian
|
debian_linux
x11-common
|
The init script in the Debian x11-common package before 1:7.6+12 is vulnerable to a symlink attack that can lead to a privilege escalation during package installation.
|
CWE-59
Link Following
|
CVE-2012-1093
|
2024-11-21 10:36 |
2020-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292610
|
7.8 |
HIGH
Local
|
nvidia
|
display_driver
|
A Memory Corruption Vulnerability exists in NVIDIA Graphics Drivers 29549 due to an unknown function in the file proc/driver/nvidia/registry.
|
CWE-787
Out-of-bounds Write
|
CVE-2012-0951
|
2024-11-21 10:36 |
2020-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
