Lucene search
K

5094 matches found

Cvelist
Cvelist
added 2021/04/08 10:6 p.m.17 views

CVE-2021-3413

A flaw was found in Red Hat Satellite in tfm-rubygem-foremanazurerm in versions before 2.2.0. A credential leak was identified which will expose Azure Resource Manager's secret key through JSON of the API output. The highest threat from this vulnerability is to data confidentiality and integrity ...

6.7AI score0.0065EPSS
Exploits0References1
CVE
CVE
added 2021/04/08 10:6 p.m.123 views

CVE-2021-3413

CVE-2021-3413 affects Red Hat Satellite’s tfm-rubygem-foreman_azure_rm: versions before 2.2.0 expose the Azure Resource Manager secret key via API output JSON, leading to potential information disclosure. Root cause: credential leakage in the API surface. Impact per sources: data confidentiality ...

6.5CVSS6.3AI score0.0065EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2021/04/08 8:52 p.m.35 views

CVE-2021-3487

There's a flaw in the BFD library of binutils. An attacker who supplies a crafted file to an application linked with BFD, and using the DWARF functionality, could cause an impact to system availability by way of excessive memory consumption...

6.3AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/08 8:52 p.m.36 views

CVE-2021-29154

A flaw was found in the Linux kernels eBPF implementation. By default, accessing the eBPF verifier is only accessible to privileged users with CAPSYSADMIN. A local user with the ability to insert eBPF instructions can abuse a flaw in eBPF to corrupt memory. The highest threat from this...

7.8CVSS7.3AI score0.00939EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/08 5:15 p.m.31 views

CVE-2020-36314

A path traversal vulnerability was found in file-roller due to an incomplete fix for CVE-2020-11736. It may still be possible to extract files outside of the intended directory in case of malicious archives containing symbolic links. The highest threat from this vulnerability is to data integrity...

3.9CVSS2.9AI score0.00768EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2021/04/08 7:31 a.m.5 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/04/07 7:16 p.m.22 views

CVE-2021-30178

A flaw was found in the Linux kernel. A NULL pointer dereference occurs for certain accesses to the SynIC Hyper-V context. The highest threat from this vulnerability is to system availability...

5.5CVSS2.6AI score0.00299EPSS
Exploits0References3
Amazon
Amazon
added 2021/04/07 12:0 a.m.73 views

Low: tomcat7

Issue Overview: A deserialization flaw was discovered in Apache Tomcat's use of a FileStore. Under specific circumstances, an attacker can use a specially crafted request to trigger Remote Code Execution through deserialization of the file under their control. The highest threat from the...

7.5CVSS7.7AI score0.56636EPSS
Exploits15
Amazon
Amazon
added 2021/04/07 12:0 a.m.32 views

Low: screen

Issue Overview: A flaw was found in screen. A specially crafted sequence of combining characters could cause an out of bounds write leading to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2021-269...

9.8CVSS8.4AI score0.09147EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2021/04/07 12:0 a.m.44 views

CVE-2021-3483

A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

7.8CVSS6.7AI score0.00361EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2021/04/06 7:22 p.m.28 views

CVE-2021-20312

A flaw was found in ImageMagick, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest threat from this vulnerability is to syst...

7.8CVSS3.5AI score0.0238EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/06 6:48 p.m.25 views

CVE-2021-20310

A flaw was found in ImageMagick, where a division by zero ConvertXYZToJzazbz of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest threat from this vulnerability is to syst...

7.8CVSS2.3AI score0.01287EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/06 6:48 p.m.41 views

CVE-2021-20311

A flaw was found in ImageMagick, where a division by zero in sRGBTransformImage in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The highest threat from this vulnerability is to...

7.8CVSS2.3AI score0.01272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/04/06 6:47 p.m.24 views

CVE-2021-20309

A flaw was found in ImageMagick, where a division by zero in WaveImage of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image file submitted to an application using ImageMagick. The highest threat from this vulnerability is to system availability...

7.8CVSS2.1AI score0.02315EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/04/06 5:15 p.m.4 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/06 5:15 p.m.4 views

kernel: Use after free via PI futex state

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS7.1AI score0.01377EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/06 5:15 p.m.6 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/06 3:32 p.m.3 views

kernel: out-of-bounds read in libiscsi module

A flaw was found in the Linux kernel. An out-of-bounds read was discovered in the libiscsi module that could lead to reading kernel memory or a crash. The highest threat from this vulnerability is to data confidentiality as well as system availability...

7.1CVSS6.7AI score0.00957EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/04/06 3:32 p.m.4 views

kernel: heap buffer overflow in the iSCSI subsystem

A flaw was found in the Linux kernel. A heap buffer overflow in the iSCSI subsystem is triggered by setting an iSCSI string attribute to a value larger than one page and then trying to read it. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.8CVSS6.9AI score0.02079EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2021/04/06 3:32 p.m.5 views

kernel: Use after free via PI futex state

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS7.1AI score0.01377EPSS
Exploits1References4
Rows per page
Query Builder