Search
14,631 CVEs · Low severity
CVEs (14,631, showing first 500)
Only the first 500 CVEs (by current sort) are shown when searching without a keyword. Add a search term above to narrow the results.
Showing 51–75 of 14,631 (capped at 500)
| CVE ID | Severity | Patch | CVSS ↑ | Published | Description |
|---|---|---|---|---|---|
| CVE-2012-0645 | LOW | Patched | 1.2 | 2012-03-08 | Siri in Apple iOS before 5.1 does not properly restrict the ability of Mail.app to handle voice commands, which allows physically proximate attackers to bypass the locked s… |
| CVE-2011-4617 | LOW | Patched | 1.2 | 2011-12-31 | virtualenv.py in virtualenv before 1.5 allows local users to overwrite arbitrary files via a symlink attack on a certain file in /tmp/. |
| CVE-2011-3440 | LOW | Patched | 1.2 | 2011-11-11 | The Passcode Lock feature in Apple iOS before 5.0.1 on the iPad 2 does not properly implement the locked state, which allows physically proximate attackers to access data b… |
| CVE-2011-4415 | LOW | 1.2 | 2011-11-08 | The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict… | |
| CVE-2011-3163 | LOW | 1.2 | 2011-10-23 | HP MFP Digital Sending Software 4.9x through 4.91.21 allows local users to obtain sensitive workflow-metadata information via unspecified vectors. | |
| CVE-2011-2724 | LOW | Patched | 1.2 | 2011-09-06 | The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the (1) device name and (2) mountpoint strin… |
| CVE-2011-1769 | LOW | Patched | 1.2 | 2011-08-29 | SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted EL… |
| CVE-2011-1781 | LOW | 1.2 | 2011-08-29 | SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program wi… | |
| CVE-2010-3718 | LOW | 1.2 | 2011-02-10 | Apache Tomcat 7.0.0 through 7.0.3, 6.0.x, and 5.5.x, when running within a SecurityManager, does not make the ServletContext attribute read-only, which allows local web app… | |
| CVE-2010-3014 | LOW | 1.2 | 2010-08-20 | The Coda filesystem kernel module, as used in NetBSD and FreeBSD, when Coda is loaded and Venus is running with /coda mounted, allows local users to read sensitive heap mem… | |
| CVE-2008-7256 | LOW | Patched | 1.2 | 2010-06-03 | mm/shmem.c in the Linux kernel before 2.6.28-rc8, when strict overcommit is enabled and CONFIG_SECURITY is disabled, does not properly handle the export of shmemfs objects … |
| CVE-2009-1707 | LOW | Patched | 1.2 | 2009-06-10 | Race condition in the Reset Safari implementation in Apple Safari before 4.0 on Windows might allow local users to read stored web-site passwords via unspecified vectors. |
| CVE-2008-5450 | LOW | 1.2 | 2009-01-14 | Unspecified vulnerability in the Oracle Applications Platform Engineering component in Oracle E-Business Suite 11.5.10 CU2 and 12.0.6 allows local users to affect confident… | |
| CVE-2008-4593 | LOW | Patched | 1.2 | 2008-10-17 | Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive informati… |
| CVE-2008-3259 | LOW | Patched | 1.2 | 2008-07-22 | OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the … |
| CVE-2007-3108 | LOW | Patched | 1.2 | 2007-08-08 | The BN_from_montgomery function in crypto/bn/bn_mont.c in OpenSSL 0.9.8e and earlier does not properly perform Montgomery multiplication, which might allow local users to c… |
| CVE-2007-2453 | LOW | Patched | 1.2 | 2007-06-11 | The random number feature in Linux kernel 2.6 before 2.6.20.13, and 2.6.21.x before 2.6.21.4, (1) does not properly seed pools when there is no entropy, or (2) uses an inco… |
| CVE-2007-0832 | LOW | 1.2 | 2007-02-07 | VMware Workstation 5.5.3 34685 does not immediately change the availability of a shared clipboard when the "Enable copy and paste to and from this virtual machine" checkbox… | |
| CVE-2007-0833 | LOW | 1.2 | 2007-02-07 | VMware Workstation 5.5.3 34685, when the "Enable copy and paste to and from this virtual machine" option is enabled, preserves clipboard data on the guest operating system … | |
| CVE-2006-1167 | LOW | 1.2 | 2007-02-06 | SGI ProPack 3 SP6 kernel displays the frame buffer contents of the last session after a reboot, which might allow local users to obtain sensitive information. | |
| CVE-2006-6306 | LOW | 1.2 | 2006-12-05 | Format string vulnerability in Novell Modular Authentication Services (NMAS) in the Novell Client 4.91 SP2 and SP3 allows users with physical access to read stack and memor… | |
| CVE-2006-5757 | LOW | 1.2 | 2006-11-06 | Race condition in the __find_get_block_slow function in the ISO9660 filesystem in Linux 2.6.18 and possibly other versions allows local users to cause a denial of service (… | |
| CVE-2006-5297 | LOW | Patched | 1.2 | 2006-10-16 | Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arb… |
| CVE-2006-5298 | LOW | Patched | 1.2 | 2006-10-16 | The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which m… |
| CVE-2006-5214 | LOW | Patched | 1.2 | 2006-10-10 | Race condition in the Xsession script, as used by X Display Manager (xdm) in NetBSD before 20060212, X.Org before 20060225, and Solaris 8 through 10 before 20061006, causes… |