CVE in 2010

4,667 vulnerabilities published -19.2% vs 2009

2007 2008 2009 2010 2011 2012 2013

4,667

Total CVEs

Critical

High

8.1

CVSS Average

Monthly Distribution

319 CVEs

3 critical

Jan

319

308 CVEs

1 critical

Feb

308

515 CVEs

0 critical

Mar

515

504 CVEs

1 critical

Apr

504

424 CVEs

1 critical

May

424

493 CVEs

2 critical

Jun

493

344 CVEs

1 critical

Jul

344

383 CVEs

2 critical

Aug

383

301 CVEs

1 critical

Sep

301

435 CVEs

5 critical

Oct

435

280 CVEs

8 critical

Nov

280

361 CVEs

1 critical

Dec

361

Top 20 Most Critical CVEs of 2010

View all

CVE-2010-3416

Google Chrome before 6.0.472.59 on Linux does not properly implement the Khmer locale, which allows remote attackers to cause a…

Sep 16 9.8

CVE-2010-4201

Use-after-free vulnerability in Google Chrome before 7.0.517.44 allows remote attackers to cause a denial of service or possibly have unspecified…

Nov 6 9.8

CVE-2010-1573

Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and password (gemtekswd) for a debug interface for certain…

Jun 10 9.8

CVE-2010-1866

The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause…

May 7 9.8

CVE-2010-4041

The sandbox implementation in Google Chrome before 7.0.517.41 on Linux does not properly constrain worker processes, which might allow remote…

Oct 21 9.8

CVE-2010-4197

Use-after-free vulnerability in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers…

Nov 6 9.8

CVE-2010-1378

OpenSSL in Apple Mac OS X 10.6.x before 10.6.5 does not properly perform arithmetic, which allows remote attackers to bypass…

Nov 15 9.8

CVE-2009-4013

Multiple directory traversal vulnerabilities in Lintian 1.23.x through 1.23.28, 1.24.x through 1.24.2.1, and 2.x before 2.3.2 allow remote attackers to…

Feb 2 9.8

CVE-2009-4581

Directory traversal vulnerability in modules/admincp.php in RoseOnlineCMS 3 B1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include…

Jan 6 9.8

CVE-2009-4491

thttpd 2.25b0 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a…

Jan 13 9.8

CVE-2010-3729

The SPDY protocol implementation in Google Chrome before 6.0.472.62 does not properly manage buffers, which might allow remote attackers to…

Oct 5 9.8

CVE-2010-1205

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote…

Jun 30 9.8

CVE-2010-2861 KEV

Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary…

Aug 11 9.8

CVE-2010-4042

Google Chrome before 7.0.517.41 does not properly handle element maps, which allows remote attackers to cause a denial of service…

Oct 21 9.8

CVE-2010-0211

The slap_modrdn2mods function in modrdn.c in OpenLDAP 2.4.22 does not check the return value of a call to the smr_normalize…

Jul 28 9.8

CVE-2010-3765 KEV

Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x…

Oct 28 9.8

CVE-2010-2941

ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute values with invalid string data…

Nov 5 9.8

CVE-2010-0840 KEV

Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE and Java for Business 6 Update 18, 5.0…

Apr 1 9.8

CVE-2009-4488

Varnish 2.0.6 writes data to a log file without sanitizing non-printable characters, which might allow remote attackers to modify a…

Jan 13 9.8

CVE-2010-4202

Multiple integer overflows in Google Chrome before 7.0.517.44 on Linux allow remote attackers to cause a denial of service or…

Nov 6 9.8

Explore Other Years

2026 2025 2024 2023 2022 2021 2020 2019 2018 2017 2016 2015 2014 2013 2012

CVE Vulnerabilities

Posts & Pages

CVE in 2010

Monthly Distribution

Top 20 Most Critical CVEs of 2010

Explore Other Years