Search
14,626 CVEs · Low severity
CVEs (14,626, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 476–500 of 14,626 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↑ | Published | Description |
|---|---|---|---|---|---|
| CVE-2013-1427 | LOW | Patched | 1.9 | 2013-03-21 | The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local … |
| CVE-2013-0979 | LOW | Patched | 1.9 | 2013-03-20 | lockdownd in Lockdown in Apple iOS before 6.1.3 does not properly consider file types during the permission-setting step of a backup restoration, which allows local users t… |
| CVE-2012-6549 | LOW | Patched | 1.9 | 2013-03-15 | The isofs_export_encode_fh function in fs/isofs/export.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain s… |
| CVE-2012-6537 | LOW | Patched | 1.9 | 2013-03-15 | net/xfrm/xfrm_user.c in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel memory by l… |
| CVE-2012-6538 | LOW | Patched | 1.9 | 2013-03-15 | The copy_to_user_auth function in net/xfrm/xfrm_user.c in the Linux kernel before 3.6 uses an incorrect C library function for copying a string, which allows local users to… |
| CVE-2012-6539 | LOW | Patched | 1.9 | 2013-03-15 | The dev_ifconf function in net/socket.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive information fro… |
| CVE-2012-6540 | LOW | Patched | 1.9 | 2013-03-15 | The do_ip_vs_get_ctl function in net/netfilter/ipvs/ip_vs_ctl.c in the Linux kernel before 3.6 does not initialize a certain structure for IP_VS_SO_GET_TIMEOUT commands, wh… |
| CVE-2012-6541 | LOW | Patched | 1.9 | 2013-03-15 | The ccid3_hc_tx_getsockopt function in net/dccp/ccids/ccid3.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sen… |
| CVE-2012-6542 | LOW | Patched | 1.9 | 2013-03-15 | The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel before 3.6 has an incorrect return value in certain circumstances, which allows local users to obtain se… |
| CVE-2012-6543 | LOW | Patched | 1.9 | 2013-03-15 | The l2tp_ip6_getname function in net/l2tp/l2tp_ip6.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensi… |
| CVE-2012-6544 | LOW | Patched | 1.9 | 2013-03-15 | The Bluetooth protocol stack in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information from k… |
| CVE-2012-6545 | LOW | Patched | 1.9 | 2013-03-15 | The Bluetooth RFCOMM implementation in the Linux kernel before 3.6 does not properly initialize certain structures, which allows local users to obtain sensitive information… |
| CVE-2012-6546 | LOW | Patched | 1.9 | 2013-03-15 | The ATM implementation in the Linux kernel before 3.6 does not initialize certain structures, which allows local users to obtain sensitive information from kernel stack mem… |
| CVE-2012-6547 | LOW | Patched | 1.9 | 2013-03-15 | The __tun_chr_ioctl function in drivers/net/tun.c in the Linux kernel before 3.6 does not initialize a certain structure, which allows local users to obtain sensitive infor… |
| CVE-2012-6548 | LOW | Patched | 1.9 | 2013-03-15 | The udf_encode_fh function in fs/udf/namei.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive inf… |
| CVE-2013-0200 | LOW | Patched | 1.9 | 2013-03-06 | HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcu… |
| CVE-2011-1019 | LOW | Patched | 1.9 | 2013-03-01 | The dev_load function in net/core/dev.c in the Linux kernel before 2.6.38 allows local users to bypass an intended CAP_SYS_MODULE capability requirement and load arbitrary … |
| CVE-2012-1568 | LOW | 1.9 | 2013-03-01 | The ExecShield feature in a certain Red Hat patch for the Linux kernel in Red Hat Enterprise Linux (RHEL) 5 and 6 and Fedora 15 and 16 does not properly handle use of many … | |
| CVE-2013-0349 | LOW | Patched | 1.9 | 2013-02-28 | The hidp_setup_hid function in net/bluetooth/hidp/core.c in the Linux kernel before 3.7.6 does not properly copy a certain name field, which allows local users to obtain se… |
| CVE-2012-4832 | LOW | 1.9 | 2013-01-31 | Information Services Framework (ISF) in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 and InfoSphere Business Glossary 8.1.1 and 8.1.2 does not have an off… | |
| CVE-2012-0700 | LOW | 1.9 | 2013-01-31 | The client in InfoSphere FastTrack 8.1 through 8.7 in IBM InfoSphere Information Server 8.1, 8.5 before FP3, and 8.7 does not properly store credentials, which allows local… | |
| CVE-2012-4461 | LOW | Patched | 1.9 | 2013-01-22 | The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOP… |
| CVE-2013-0154 | LOW | 1.9 | 2013-01-12 | The get_page_type function in xen/arch/x86/mm.c in Xen 4.2, when debugging is enabled, allows local PV or HVM guest administrators to cause a denial of service (assertion f… | |
| CVE-2012-4508 | LOW | Patched | 1.9 | 2012-12-21 | Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was n… |
| CVE-2010-2387 | LOW | Patched | 1.9 | 2012-12-21 | vicious-extensions/ve-misc.c in GNOME Display Manager (gdm) 2.20.x before 2.20.11, when GDM debug is enabled, logs the user password when it contains invalid UTF8 encoded c… |