Canonical CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (4266 CVEs found)

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2015-3279	4 Canonical, Debian, Linuxfoundation and 1 more	4 Ubuntu Linux, Debian Linux, Cups-filters and 1 more	2025-04-12	N/A
Integer overflow in filter/texttopdf.c in texttopdf in cups-filters before 1.0.71 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted line size in a print job, which triggers a heap-based buffer overflow.
CVE-2015-0374	7 Canonical, Debian, Fedoraproject and 4 more	19 Ubuntu Linux, Debian Linux, Fedora and 16 more	2025-04-12	N/A
Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier and 5.6.21 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges : Foreign Key.
CVE-2016-2191	4 Canonical, Debian, Opensuse and 1 more	5 Ubuntu Linux, Debian Linux, Leap and 2 more	2025-04-12	N/A
The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (invalid memory write and crash) via a series of delta escapes in a crafted BMP image.
CVE-2016-2510	4 Beanshell, Canonical, Debian and 1 more	8 Beanshell, Ubuntu Linux, Debian Linux and 5 more	2025-04-12	8.1 High
BeanShell (bsh) before 2.0b6, when included on the classpath by an application that uses Java serialization or XStream, allows remote attackers to execute arbitrary code via crafted serialized data, related to XThis.Handler.
CVE-2014-0461	6 Canonical, Debian, Ibm and 3 more	10 Ubuntu Linux, Debian Linux, Forms Viewer and 7 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
CVE-2015-0395	6 Canonical, Debian, Novell and 3 more	10 Ubuntu Linux, Debian Linux, Suse Linux Enterprise Server and 7 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
CVE-2014-0460	5 Canonical, Debian, Juniper and 2 more	10 Ubuntu Linux, Debian Linux, Junos Space and 7 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality and integrity via vectors related to JNDI.
CVE-2014-0459	4 Canonical, Debian, Oracle and 1 more	7 Ubuntu Linux, Debian Linux, Jdk and 4 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect availability via unknown vectors related to 2D.
CVE-2015-0408	6 Canonical, Debian, Novell and 3 more	11 Ubuntu Linux, Debian Linux, Suse Linux Enterprise Desktop and 8 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.
CVE-2015-0410	6 Canonical, Debian, Novell and 3 more	12 Ubuntu Linux, Debian Linux, Suse Linux Enterprise Desktop and 9 more	2025-04-12	N/A
Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows remote attackers to affect availability via unknown vectors related to Security.
CVE-2014-0458	4 Canonical, Debian, Oracle and 1 more	8 Ubuntu Linux, Debian Linux, Jdk and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS, a different vulnerability than CVE-2014-0452 and CVE-2014-2423.
CVE-2015-3153	5 Apple, Canonical, Debian and 2 more	6 Mac Os X, Ubuntu Linux, Debian Linux and 3 more	2025-04-12	N/A
The default configuration for cURL and libcurl before 7.42.1 sends custom HTTP headers to both the proxy and destination server, which might allow remote proxy servers to obtain sensitive information by reading the header contents.
CVE-2016-2184	3 Canonical, Linux, Novell	10 Ubuntu Linux, Linux Kernel, Suse Linux Enterprise Debuginfo and 7 more	2025-04-12	N/A
The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) via a crafted endpoints value in a USB device descriptor.
CVE-2015-0432	7 Canonical, Debian, Fedoraproject and 4 more	17 Ubuntu Linux, Debian Linux, Fedora and 14 more	2025-04-12	N/A
Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DDL : Foreign Key.
CVE-2014-0457	7 Canonical, Debian, Ibm and 4 more	12 Ubuntu Linux, Debian Linux, Forms Viewer and 9 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 5.0u61, SE 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries.
CVE-2014-0456	7 Canonical, Debian, Ibm and 4 more	11 Ubuntu Linux, Debian Linux, Forms Viewer and 8 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.
CVE-2012-1166	1 Canonical	2 Ltsp Display Manager, Ubuntu Linux	2025-04-12	N/A
The default keybindings for wwm in LTSP Display Manager (ldm) 2.2.x before 2.2.7 allow remote attackers to execute arbitrary commands via the KP_RETURN keybinding, which launches a terminal window.
CVE-2015-0501	7 Canonical, Debian, Juniper and 4 more	16 Ubuntu Linux, Debian Linux, Junos Space and 13 more	2025-04-12	N/A
Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Compiling.
CVE-2014-0455	5 Canonical, Ibm, Microsoft and 2 more	8 Ubuntu Linux, Forms Viewer, Windows and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries, a different vulnerability than CVE-2014-0432 and CVE-2014-2402.
CVE-2014-0454	5 Canonical, Ibm, Microsoft and 2 more	8 Ubuntu Linux, Forms Viewer, Windows and 5 more	2025-04-12	N/A
Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security.

« first previous Page 51 of 214. next last »