Main entries ~3682 :
Date Id Summary Products Score Patch Annotated
2011-05-31 CVE-2011-1937 Cross-site scripting (XSS) vulnerability in Webmin 1.540 and earlier allows local users to inject arbitrary web script or HTML via a chfn command that changes the real (aka Full Name) field, related to useradmin/index.cgi and useradmin/user-lib.pl. Webmin N/A
2012-06-13 CVE-2011-1927 The ip_expire function in net/ipv4/ip_fragment.c in the Linux kernel before 2.6.39 does not properly construct ICMP_TIME_EXCEEDED packets after a timeout, which allows remote attackers to cause a denial of service (invalid pointer dereference) via crafted fragmented packets. Linux_kernel N/A
2012-10-03 CVE-2011-1833 Race condition in the ecryptfs_mount function in fs/ecryptfs/main.c in the eCryptfs subsystem in the Linux kernel before 3.1 allows local users to bypass intended file permissions via a mount.ecryptfs_private mount with a mismatched uid. Linux_kernel N/A
2012-06-13 CVE-2011-1768 The tunnels implementation in the Linux kernel before 2.6.34, when tunnel functionality is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading. Linux_kernel N/A
2012-06-13 CVE-2011-1767 net/ipv4/ip_gre.c in the Linux kernel before 2.6.34, when ip_gre is configured as a module, allows remote attackers to cause a denial of service (OOPS) by sending a packet during module loading. Linux_kernel N/A
2012-06-13 CVE-2011-1759 Integer overflow in the sys_oabi_semtimedop function in arch/arm/kernel/sys_oabi-compat.c in the Linux kernel before 2.6.39 on the ARM platform, when CONFIG_OABI_COMPAT is enabled, allows local users to gain privileges or cause a denial of service (heap memory corruption) by providing a crafted argument and leveraging a race condition. Linux_kernel N/A
2011-04-29 CVE-2011-1589 Directory traversal vulnerability in Path.pm in Mojolicious before 1.16 allows remote attackers to read arbitrary files via a %2f..%2f (encoded slash dot dot slash) in a URI. Mojolicious N/A
Remaining NVD entries (unprocessed / no code available): ~295032 :
Date Id Summary Products Score Patch
2025-07-06 CVE-2025-7076 A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.cgi of the component Configuration Handler. The manipulation leads to improper access controls. The attack needs to be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. N/A 5.4
2025-07-06 CVE-2025-7075 A vulnerability was found in BlackVue Dashcam 590X up to 20250624. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /upload.cgi of the component HTTP Endpoint. The manipulation leads to unrestricted upload. The attack needs to be done within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. N/A 6.3
2025-07-05 CVE-2023-5361 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6726 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6770 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6818 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A
2025-07-05 CVE-2023-6820 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A