Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Suse Studio Onsite Security Vulnerabilities - February

cve
cve

CVE-2011-2225

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows attackers to have an unknown impact via a crafted directory pathname that is inserted into config.sh.

6.7AI Score

0.004EPSS

2011-08-23 09:55 PM
30
cve
cve

CVE-2011-2226

Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to a pattern listing.

5.9AI Score

0.002EPSS

2011-08-23 09:55 PM
27
cve
cve

CVE-2011-2644

Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, related to an RPM info display.

5.9AI Score

0.004EPSS

2011-08-23 09:55 PM
22
cve
cve

CVE-2011-2645

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted filename for a custom RPM.

7.8AI Score

0.059EPSS

2011-08-23 09:55 PM
23
cve
cve

CVE-2011-2646

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted filename in the list of testdrive modified files.

7.8AI Score

0.059EPSS

2011-08-23 09:55 PM
25
cve
cve

CVE-2011-2647

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted archive name in the list of testdrive modified files.

7.8AI Score

0.069EPSS

2011-08-23 09:55 PM
30
cve
cve

CVE-2011-2648

Unspecified vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a filter in a modified file.

7.8AI Score

0.069EPSS

2011-08-23 09:55 PM
22
cve
cve

CVE-2011-2649

Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows attackers to execute arbitrary commands via shell metacharacters in an unspecified FileUtils function call.

7.8AI Score

0.005EPSS

2011-08-23 09:55 PM
25
cve
cve

CVE-2011-2650

Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via a crafted pattern name that is included in an RPM info display.

5.8AI Score

0.004EPSS

2011-08-23 09:55 PM
25
cve
cve

CVE-2011-2651

Unspecified vulnerability in the file browser in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to execute arbitrary code via a crafted filename.

7.8AI Score

0.052EPSS

2011-08-23 09:55 PM
24
cve
cve

CVE-2011-2652

Cross-site scripting (XSS) vulnerability in Kiwi before 3.74.2, as used in SUSE Studio 1.1 before 1.1.4, allows remote attackers to inject arbitrary web script or HTML via a crafted archive file list that is used in an overlay file.

5.8AI Score

0.004EPSS

2011-08-23 09:55 PM
26
cve
cve

CVE-2013-4589

The ExportAlphaQuantumType function in export.c in GraphicsMagick before 1.3.18 might allow remote attackers to cause a denial of service (crash) via vectors related to exporting the alpha of an 8-bit RGBA image.

6.3AI Score

0.012EPSS

2013-11-23 11:55 AM
37