Main entries ~3682 :
Date Id Summary Products Score Patch Annotated
2012-10-03 CVE-2011-1833 Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid. Linux_kernel N/A
2012-06-13 CVE-2011-1768 The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading. Linux_kernel N/A
2012-06-13 CVE-2011-1767 net/ipv4/ip_gre.c in the Linux kernel before 2.6.34, when ip_gre is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading. Linux_kernel N/A
2012-06-13 CVE-2011-1759 Integer overflow in the sys_oabi_semtimedop function in arch/arm/kernel/sys_oabi-compat.c in the Linux kernel before 2.6.39 on the ARM platform, when CONFIG_OABI_COMPAT is enabled, allows local users to gain privileges or cause a denial of service (heap memory corruption) by providing a crafted argument and leveraging a race condition. Linux_kernel N/A
2011-04-29 CVE-2011-1589 Directory traversal vulnerability in Path.pm in Mojolicious before 1.16 allows remote attackers to read arbitrary files via a %2f..%2f (encoded slash dot dot slash) in a URI. Mojolicious N/A
2013-06-08 CVE-2011-1585 The cifs_find_smb_ses function in fs/cifs/connect.c in the Linux kernel before 2.6.36 does not properly determine the associations between users and sessions, which allows local users to bypass CIFS share authentication by leveraging a mount of a share by a different user. Linux_kernel, Suse_linux_enterprise_server N/A
2011-05-23 CVE-2011-1575 The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted FTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411. Pure\-Ftpd N/A
Remaining NVD entries (unprocessed / no code available): ~295032 :
Date Id Summary Products Score Patch
2025-07-06 CVE-2025-7076 A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.cgi of the component Configuration Handler. The manipulation leads to improper access controls. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. N/A 5.4
2025-07-06 CVE-2025-7075 A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /upload.cgi of the component HTTP Endpoint. The manipulation leads to unrestricted upload. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. N/A 6.3
2025-07-05 CVE-2023-5361 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6726 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6770 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6818 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6820 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A