Description
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
CVE vulnerabilities with CWE-134 (432)
10.0
CVSS
HIGH
CVE-2012-1851
pub. 2012-08-15
10.0
CVSS
HIGH
CVE-2012-0242
pub. 2012-02-21
10.0
CVSS
HIGH
CVE-2011-2475
pub. 2011-06-09
10.0
CVSS
HIGH
CVE-2011-1568
pub. 2011-04-05
10.0
CVSS
HIGH
CVE-2010-4235
pub. 2011-04-04
10.0
CVSS
HIGH
CVE-2011-0270
pub. 2011-01-13
10.0
CVSS
HIGH
CVE-2010-2451
pub. 2010-06-29
10.0
CVSS
HIGH
CVE-2010-1039
pub. 2010-05-20
10.0
CVSS
HIGH
CVE-2010-1550
pub. 2010-05-13
10.0
CVSS
HIGH
CVE-2009-3732
pub. 2010-04-12
10.0
CVSS
HIGH
CVE-2009-3663
pub. 2009-10-11
10.0
CVSS
HIGH
CVE-2008-7228
pub. 2009-09-14
10.0
CVSS
HIGH
CVE-2009-2548
pub. 2009-07-20
10.0
CVSS
HIGH
CVE-2009-1210
pub. 2009-04-01
10.0
CVSS
HIGH
CVE-2008-6519
pub. 2009-03-25
10.0
CVSS
HIGH
CVE-2008-6520
pub. 2009-03-25
10.0
CVSS
HIGH
CVE-2008-5982
pub. 2009-01-27
10.0
CVSS
HIGH
CVE-2008-3533
pub. 2008-08-18
10.0
CVSS
HIGH
CVE-2008-3116
pub. 2008-07-10
10.0
CVSS
HIGH
CVE-2008-0764
pub. 2008-02-13
Showing 20 of 432 vulnerabilities