Lucene search
K
RedhatcveMost viewed

206382 matches found

RedhatCVE
RedhatCVE
•added 2021/06/08 3:14 p.m.•42 views

CVE-2019-25045

A use-after-free flaw was found in the Linux kernel’s XFRM subsystem when flushing the XFRM tunnel. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system...

7.8CVSS2.5AI score0.00503EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/19 6:33 p.m.•42 views

CVE-2021-3200

A flaw was found in libsolv. A buffer overflow vulnerability could cause a denial of service. The highest threat from this vulnerability is to system availability...

4.3CVSS2.7AI score0.01313EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/11 8:54 p.m.•42 views

CVE-2021-3544

Several memory leaks were found in the virtio vhost-user GPU device vhost-user-gpu of QEMU. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory i.e., free after effective lifetime...

6.5CVSS2.9AI score0.00436EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/05 7:49 p.m.•42 views

CVE-2021-3537

A NULL pointer dereference flaw was found in libxml2, where it did not propagate errors while parsing XML mixed content. This flaw causes the application to crash if an untrusted XML document is parsed in recovery mode and post validated. The highest threat from this vulnerability is to system...

7.5CVSS7.1AI score0.03503EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/04/28 7:48 p.m.•42 views

CVE-2019-25042

A flaw was found in unbound. An out-of-bounds write in the rdatacopy function may be abused by a remote attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability...

9.8CVSS8.8AI score0.02037EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/04/28 7:36 p.m.•42 views

CVE-2019-25032

A flaw was found in unbound. An integer overflow in regionalalloc function may lead to a buffer overflow of the allocated buffer if the size can be controlled by an attacker and can be big enough. The highest threat from this vulnerability is to data confidentiality and integrity as well as servi...

9.8CVSS3.6AI score0.02179EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/22 6:58 p.m.•42 views

CVE-2021-28952

A flaw was found in the Linux kernel. The soundwire device driver has a buffer overflow when an unexpected port ID number is encountered. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS3.7AI score0.00378EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/17 1:4 p.m.•42 views

CVE-2019-3867

A vulnerability was found in the Quay web application. Sessions in the Quay web application never expire. An attacker, able to gain access to a session, could use it to control or delete a user's container repository. Mitigation Toggle FEATUREPERMANENTSESSIONS to False in quay.conf...

4.4CVSS2.2AI score0.00295EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/14 2:33 p.m.•42 views

CVE-2020-26973

The Mozilla Foundation Security Advisory describes this flaw as: Certain input to the CSS Sanitizer confused it, resulting in incorrect components being removed. This could have been used as a sanitizer bypass...

8.8CVSS1.8AI score0.0154EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/01/12 4:20 p.m.•42 views

CVE-2020-35653

A flaw was found in python-pillow. The PcxDecode in Pillow has a buffer over-read when decoding a crafted PCX file due to the user-supplied stride value trusted for buffer calculations. The highest threat from this vulnerability is to system availability...

7.1CVSS2AI score0.01498EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/01/07 8:14 p.m.•42 views

CVE-2020-36182

A flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation The following conditions are needed for an exploit, w...

8.8CVSS1.9AI score0.05018EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2020/12/18 12:3 a.m.•42 views

CVE-2020-27846

A signature verification vulnerability exists in crewjam/saml. This flaw allows an attacker to bypass SAML Authentication. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

10CVSS3.8AI score0.04872EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2020/12/01 6:59 p.m.•42 views

CVE-2020-29370

An issue was discovered in kmemcacheallocbulk in mm/slub.c in the Linux kernel before 5.5.11. The slowpath lacks the required TID increment, aka CID-fd4d9c7d0c71...

4.4CVSS7.2AI score0.00608EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/11/24 6:52 p.m.•42 views

CVE-2020-13584

An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.1 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in a remote code execution. The victim needs to visit a malicious web site to trigger this vulnerability...

8.8CVSS4.7AI score0.04446EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/10/19 6:45 p.m.•42 views

CVE-2020-27194

An out-of-bounds access flaw was found in the Linux kernel’s implementation of the eBPF Berkeley Packet Filter code verifier, where an incorrect register bounds calculation occurs while in use of 64-bit values with scalar32minmaxor that is BPFOR. This flaw allows an unprivileged local user until...

5.5CVSS4.2AI score0.02018EPSS
Exploits5References3
RedhatCVE
RedhatCVE
•added 2020/09/24 10:17 a.m.•42 views

CVE-2020-24750

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.6. The interaction between serialization gadgets and typing is mishandled. The highest threat from this vulnerability is to data confidentiality and system availability. Mitigation The following conditions are needed for an...

8.1CVSS2.9AI score0.07268EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/09/22 9:2 a.m.•42 views

CVE-2020-14370

An information disclosure flaw was found in containers/podman. When using the deprecated Varlink API or the Docker-compatible REST API, if multiple containers are created in a short duration, the environment variables from the first container leak into subsequent containers. This flaw allows an...

5.3CVSS1.7AI score0.01402EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/08/27 2:9 p.m.•42 views

CVE-2020-14371

A credential leak vulnerability was found in Red Hat Satellite. This flaw exposes the compute resources credentials through VMs that are running on these resources in Satellite...

6.5CVSS1.8AI score0.00868EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/08/19 1:38 p.m.•42 views

CVE-2020-16307

A null pointer dereference vulnerability in devices/vector/gdevtxtw.c and psi/zbfont.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51. Mitigation Mitigation for this issue is either not available or...

5.5CVSS1.6AI score0.01775EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/06/23 7:26 p.m.•42 views

CVE-2020-14300

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2016-9962, which was previously fixed via RHSA-2017:0116. This issue could allow a malicious or compromised container to compromise the...

4.6CVSS3.7AI score0.00382EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/06/10 2:56 p.m.•42 views

CVE-2020-12695

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. Mitigation To mitigate this flaw, close of...

7.8CVSS0.8AI score0.15193EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2020/05/21 7:21 p.m.•42 views

CVE-2020-13253

An out-of-bounds read-access flaw was found in the SD Memory Card emulator of the QEMU. This flaw occurs while performing block write commands via sdhciwrite, if a guest user has sent an 'address' which is out-of-bounds of 's-wpgroups'. A guest user or process may use this flaw to crash the QEMU...

2.1CVSS3AI score0.00428EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/05/14 11:10 a.m.•42 views

CVE-2020-1983

A use-after-free flaw was found in the SLiRP networking implementation of the QEMU emulator. Specifically, this flaw occurs in the ipreass routine while reassembling incoming IP fragments whose combined size is bigger than 65k. This flaw allows an attacker to crash the QEMU process on the host,...

7.5CVSS3.5AI score0.02293EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/04/24 8:3 a.m.•42 views

CVE-2019-12519

A flaw was found in Squid through version 4.7. When handling the tag esi:when, when ESI is enabled, Squid calls the ESIExpression::Evaluate function which uses a fixed stack buffer to hold the expression. While processing the expression, there is no check to ensure that the stack won't overflow...

7.5CVSS4.2AI score0.06734EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/04/09 11:3 a.m.•42 views

CVE-2020-11653

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss. Mitigation An use...

7.5CVSS2.5AI score0.02106EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/09 10:50 a.m.•42 views

CVE-2019-11249

The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary in the container is...

6.5CVSS2.7AI score0.13164EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2020/04/09 7:13 a.m.•42 views

CVE-2018-12126

Modern Intel microprocessors implement hardware-level micro-optimizations to improve the performance of writing data back to CPU caches. The write operation is split into STA STore Address and STD STore Data sub-operations. These sub-operations allow the processor to hand-off address generation...

6.5CVSS2.3AI score0.01497EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/09 3:19 a.m.•42 views

CVE-2019-12529

An issue was discovered in Squid 2.x through 2.7.STABLE9, 3.x through 3.5.28, and 4.x through 4.7. When Squid is configured to use Basic Authentication, the Proxy-Authorization header is parsed via uudecode. uudecode determines how many bytes will be decoded by iterating over the input and checki...

5.9CVSS2AI score0.08092EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/08 8:22 p.m.•42 views

CVE-2017-6001

It was found that the original fix for CVE-2016-6786 was incomplete. There exist a race between two concurrent sysperfeventopen calls when both try and move the same pre-existing software group into a hardware context...

7.6CVSS1.2AI score0.01674EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/04/08 2:5 a.m.•42 views

CVE-2020-6822

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS2.2AI score0.01293EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/04 5:33 p.m.•42 views

CVE-2020-8835

An out-of-bounds access flaw was found in the Linux kernel’s implementation of the eBPF code verifier, where an incorrect register bounds calculation while checking 32-bit instructions in an eBPF program occurs. This flaw allows an unprivileged user or process to execute eBPF programs to crash th...

7.8CVSS4.4AI score0.0606EPSS
Exploits9References3
RedhatCVE
RedhatCVE
•added 2020/04/03 8:31 p.m.•42 views

CVE-2020-1927

A flaw was found in Apache HTTP Server httpd versions 2.4.0 to 2.4.41. Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL...

6.1CVSS7.2AI score0.56691EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/02 7:1 p.m.•42 views

CVE-2020-6096

A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy. The flaw affects the third argument to memcpy that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and...

8.1CVSS4.2AI score0.05223EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/01 7:59 p.m.•42 views

CVE-2018-5168

Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme element. This could allow a malicious site to install a theme without user interaction which could contain offensive or embarrassing images. This vulnerability affects...

6.1CVSS1.5AI score0.0238EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/04/01 2:40 a.m.•42 views

CVE-2019-14896

A heap-based buffer overflow vulnerability was found in the Linux kernel's Marvell WiFi chip driver. A remote attacker could cause a denial of service system crash or, possibly execute arbitrary code, when the lbsibssjoinexisting function is called after a STA connects to an AP...

10CVSS5.6AI score0.08667EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/03/31 8:43 a.m.•42 views

CVE-2018-16428

In GNOME GLib 2.56.1, gmarkupparsecontextendparse in gmarkup.c has a NULL pointer dereference. Mitigation Since the only affected code in this flaw is gmarkupparsecontextendparse, any application compiled with glib2 which does not use this function or any other function which calls this vulnerabl...

9.8CVSS2.9AI score0.04693EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2020/03/02 1:29 a.m.•42 views

CVE-2018-19539

An issue was discovered in JasPer 2.0.14. There is an access violation in the function jasimagereadcmpt in libjasper/base/jasimage.c, leading to a denial of service...

6.5CVSS3.4AI score0.01946EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2020/02/05 9:14 a.m.•42 views

CVE-2019-10178

It was found that the Token Processing Service TPS did not properly sanitize the Token IDs from the "Activity" page, enabling a Stored Cross Site Scripting XSS vulnerability. An unauthenticated attacker could trick an authenticated victim into creating a specially crafted activity, which would...

6.1CVSS3.2AI score0.00961EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/15 11:39 a.m.•42 views

CVE-2020-2654

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

4.3CVSS3.1AI score0.03823EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/12 3:32 a.m.•42 views

CVE-2018-3283

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Logging. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.4CVSS1.9AI score0.02453EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/01/08 3:56 a.m.•42 views

CVE-2019-15213

A use-after-free flaw was found in the USB DVB media access driver in the Linux kernel. This flaw could allow an attacker to crash the system at device disconnect or for a kernel information leak problem to occur. The highest threat from this vulnerability is to system availability. Mitigation...

4.9CVSS0.5AI score0.00624EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/12/20 3:14 p.m.•42 views

CVE-2019-0193

A flaw was found in Apache Solr’s DataImportHandlerDIH. A DIH configuration containing scripts coming from a request's dataConfig parameter allows an attacker to perform remote code execution. Mitigation Edit solrconfig.xml to configure all DataImportHandler usages with an "invariants" section...

9.1CVSS1.2AI score0.83547EPSS
Exploits3References2
RedhatCVE
RedhatCVE
•added 2019/12/19 8:37 a.m.•42 views

CVE-2018-13785

In libpng 1.6.34, a wrong calculation of rowfactor in the pngcheckchunklength function pngrutil.c may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service...

6.5CVSS4.3AI score0.0447EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/12/13 8:38 p.m.•42 views

CVE-2019-19526

A use-after-free flaw was found in the pn533usbprobe USB interface in the Linux kernel. If the driver registration fails it needs to do all the cleanup activity and free all the related resources. A malicious USB device can cause this process to fail, causing a use-after-free vulnerability. Syste...

4.9CVSS1AI score0.00433EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2019/12/10 11:20 p.m.•42 views

CVE-2019-18801

An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that write to the heap outside of the request buffers when the upstream is HTTP/1. This may be used to corrupt nearby heap contents leading to a query-of-death scenario or may be used to bypass Envoy's...

9.8CVSS2.7AI score0.02502EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2019/11/18 9:7 p.m.•42 views

CVE-2019-12068

A flaw was found in QEMU's LSI53C895A device emulator. When executing LSI scripts, a crafted sequence of I/O requests may cause the emulator to enter into an infinite loop. This vulnerability could be executed locally and would affect the availability of the system...

4.3CVSS1.9AI score0.00514EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/13 1:8 p.m.•42 views

CVE-2019-18874

A double free issue has been discovered in python-psutil because of the mishandling of refcounts while converting system data into Python objects in functions like psutildiskpartitions, psutilusers, psutilnetifaddrs, and others. In particular cases, a local attacker may be able to get code...

7.5CVSS3.4AI score0.03522EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/05 10:21 p.m.•42 views

CVE-2017-10281

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthenticated attacke...

5.3CVSS2.8AI score0.03305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/29 4:14 a.m.•42 views

CVE-2018-2618

It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using...

5.9CVSS2.5AI score0.04721EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/28 10:20 p.m.•42 views

CVE-2017-10078

It was discovered that the Nashorn JavaScript engine in the Scripting component of OpenJDK could allow scripts to access Java APIs even when access to Java APIs was disabled. An untrusted JavaScript executed by Nashorn could use this flaw to bypass intended restrictions...

8.1CVSS2.5AI score0.02402EPSS
Exploits0References1
Total number of security vulnerabilities5000