cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2016-1957,https://securityvulnerability.io/vulnerability/CVE-2016-1957,,Memory leak in libstagefright in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 allows remote attackers to cause a denial of service (memory consumption) via an MPEG-4 file that triggers a delete operation on an array.,Novell,"Suse Package Hub For Suse Linux Enterprise,Leap,Opensuse",4.3,MEDIUM,0.007430000230669975,false,false,false,false,,false,false,2016-03-13T18:00:00.000Z,0
CVE-2016-1955,https://securityvulnerability.io/vulnerability/CVE-2016-1955,,Mozilla Firefox before 45.0 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by reading a Content Security Policy (CSP) violation report that contains path information associated with an IFRAME element.,Novell,"Suse Package Hub For Suse Linux Enterprise,Leap,Opensuse",4.3,MEDIUM,0.0031500000040978193,false,false,false,false,,false,false,2016-03-13T18:00:00.000Z,0
CVE-2015-2713,https://securityvulnerability.io/vulnerability/CVE-2015-2713,,"Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a document containing crafted text in conjunction with a Cascading Style Sheets (CSS) token sequence containing properties related to vertical text.",Novell,"Suse Linux Enterprise Server,Suse Linux Enterprise Desktop,Opensuse,Suse Linux Enterprise Software Development Kit",,,0.026019999757409096,false,false,false,false,,false,false,2015-05-14T10:00:00.000Z,0
CVE-2015-2708,https://securityvulnerability.io/vulnerability/CVE-2015-2708,,"Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.",Novell,"Suse Linux Enterprise Server,Suse Linux Enterprise Desktop,Opensuse,Suse Linux Enterprise Software Development Kit",,,0.031099999323487282,false,false,false,false,,false,false,2015-05-14T10:00:00.000Z,0
CVE-2011-0462,https://securityvulnerability.io/vulnerability/CVE-2011-0462,,Multiple cross-site scripting (XSS) vulnerabilities in the login page in the webui component in SUSE openSUSE Build Service (OBS) before 2.1.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.,Novell,Opensuse Build Service,,,0.0010900000343099236,false,false,false,false,,false,false,2011-04-10T02:51:00.000Z,0
CVE-2011-0466,https://securityvulnerability.io/vulnerability/CVE-2011-0466,,The API in SUSE openSUSE Build Service (OBS) 2.0.x before 2.0.8 and 2.1.x before 2.1.6 allows attackers to bypass intended write-access restrictions and modify a (1) package or (2) project via unspecified vectors.,Novell,Opensuse Build Service,,,0.0008999999845400453,false,false,false,false,,false,false,2011-04-10T02:51:00.000Z,0
CVE-2011-1551,https://securityvulnerability.io/vulnerability/CVE-2011-1551,,"SUSE openSUSE Factory assigns ownership of the /var/log/cobbler/ directory tree to the web-service user account, which might allow local users to gain privileges by leveraging access to this account during root filesystem operations by the Cobbler daemon.",Novell,Opensuse Factory,,,0.0005000000237487257,false,false,false,false,,false,false,2011-03-30T22:00:00.000Z,0
CVE-2010-3110,https://securityvulnerability.io/vulnerability/CVE-2010-3110,,Multiple buffer overflows in the Novell Client novfs module for the Linux kernel in SUSE Linux Enterprise 11 SP1 and openSUSE 11.3 allow local users to gain privileges via unspecified vectors.,Novell,"Suse Linux,Opensuse",,,0.0005000000237487257,false,false,false,false,,false,false,2010-10-12T20:00:00.000Z,0
CVE-2009-1297,https://securityvulnerability.io/vulnerability/CVE-2009-1297,,"iscsi_discovery in open-iscsi in SUSE openSUSE 10.3 through 11.1 and SUSE Linux Enterprise (SLE) 10 SP2 and 11, and other operating systems, allows local users to overwrite arbitrary files via a symlink attack on an unspecified temporary file that has a predictable name.",Novell,"Suse Linux,Opensuse",,,0.0005000000237487257,false,false,false,false,,false,false,2009-10-23T18:00:00.000Z,0
CVE-2007-5702,https://securityvulnerability.io/vulnerability/CVE-2007-5702,,Cross-site scripting (XSS) vulnerability in swamp/action/LoginActions (aka the login box) in the Novell OpenSUSE SWAMP Workflow Administration and Management Platform 1.x allows remote attackers to inject arbitrary web script or HTML via the username parameter.  NOTE: some of these details are obtained from third party information.,Novell,Opensuse Swamp,,,0.005830000154674053,false,false,false,false,,false,false,2007-10-29T22:00:00.000Z,0