Lucene search
K
RedhatcveMost viewed

206360 matches found

RedhatCVE
RedhatCVE
•added 2024/02/05 4:43 a.m.•82 views

CVE-2024-25062

A use-after-free flaw was found in libxml2. When using the XML Reader interface with DTD validation and XInclude expansion enabled, processing crafted XML documents can lead to an xmlValidatePopElement use-after-free. Mitigation Mitigation for this issue is either not available or the currently...

7.5CVSS7.3AI score0.01364EPSS
Exploits3References5
RedhatCVE
RedhatCVE
•added 2023/12/27 1:0 p.m.•82 views

CVE-2023-6531

A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage collector's deletion of SKB races with unixstreamreadgeneric on the socket that the SKB is queued on. Mitigation Mitigation for this issue is either not available or the currently available options don't...

7CVSS7.1AI score0.00224EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/11/28 1:28 p.m.•82 views

CVE-2023-34055

In Spring Boot versions 2.7.0 - 2.7.17, 3.0.0-3.0.12 and 3.1.0-3.1.5, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service DoS condition. Specifically, an application is vulnerable when all of the following are true: the application uses Spring M...

6.5CVSS6.5AI score0.01219EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/29 10:47 p.m.•82 views

CVE-2023-3117

A use-after-free flaw was found in the Netfilter subsystem of the Linux kernel when processing named and anonymous sets in batch requests, which can lead to performing arbitrary reads and writes in kernel memory. This flaw allows a local user with CAPNETADMIN capability to crash or potentially...

7.8CVSS6.3AI score0.12966EPSS
Exploits7References2
RedhatCVE
RedhatCVE
•added 2023/02/28 9:29 p.m.•82 views

CVE-2022-4039

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server...

9.8CVSS9AI score0.00789EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/11/15 1:55 a.m.•82 views

CVE-2022-42920

An out-of-bounds OOB write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected...

9.8CVSS9.2AI score0.02836EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/08/23 2:41 p.m.•82 views

CVE-2022-34302

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

7.5CVSS7.4AI score0.01037EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2022/05/21 12:22 a.m.•82 views

CVE-2020-36326

PHPMailer 6.1.8 through 6.4.0 allows object injection through Phar Deserialization via addAttachment with a UNC pathname. NOTE: this is similar to CVE-2018-19296, but arose because 6.1.8 fixed a functionality problem in which UNC pathnames were always considered unreadable by PHPMailer, even in...

9.8CVSS3.3AI score0.03095EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2022/04/12 7:22 a.m.•82 views

CVE-2022-1319

A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in the second...

7.5CVSS3.1AI score0.01258EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/10/19 9:3 p.m.•82 views

CVE-2021-35561

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS2.4AI score0.06468EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/11 6:0 p.m.•82 views

CVE-2021-38204

A flaw was found in the Linux kernel. A denial of service attack use-after-free and panic can be caused by a physically proximate attack by removing a MAX-3421 USB device in certain situations. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

6.8CVSS1.8AI score0.00333EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/02 6:31 a.m.•82 views

CVE-2021-3669

A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts which could lead to resource exhaustion and DoS. Mitigation Mitigation for this issue is either not available or the currently available options does not meet the Red...

5.5CVSS1AI score0.00281EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/30 6:58 p.m.•82 views

CVE-2021-30483

A flaw was found in isomorphic-git. An attacker could cause a Directory Traversal via a crafted filepath in a repository being cloned...

5.3CVSS4.1AI score0.02182EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2021/06/18 1:56 p.m.•82 views

CVE-2021-3610

A heap-based buffer overflow vulnerability was found in ImageMagick in ReadTIFFImage in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault...

7.5CVSS3.3AI score0.0272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/24 3:13 p.m.•82 views

CVE-2021-31440

An out-of-bounds access flaw was found in the Linux kernel’s implementation of the eBPF code verifier, where an incorrect register bounds calculation while checking unsigned 32-bit instructions in an eBPF program occurs.. By default accessing the eBPF verifier is only accessible to privileged use...

8.8CVSS2.4AI score0.0606EPSS
Exploits9References5
RedhatCVE
RedhatCVE
•added 2020/03/29 1:55 a.m.•82 views

CVE-2017-17855

kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars...

7.8CVSS5.9AI score0.00418EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/10 11:37 p.m.•82 views

CVE-2017-1000407

Linux kernel Virtualization Module CONFIGKVM for the Intel processor family CONFIGKVMINTEL is vulnerable to a DoS issue. It could occur if a guest was to flood the I/O port 0x80 with write requests. A guest user could use this flaw to crash the host kernel resulting in DoS...

7.4CVSS0.5AI score0.01216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2024/03/22 6:51 p.m.•81 views

CVE-2024-29943

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination...

8.8CVSS6.9AI score0.22935EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2023/08/22 5:49 p.m.•81 views

CVE-2023-3824

A flaw was found in PHP that can lead to a buffer overflow and a stack information leak due to improper bounds checking within the phardirread function. This issue may allow an attacker to initiate memory corruption by compelling the application to open a specially crafted .phar archive, allowing...

7CVSS9.6AI score0.08003EPSS
Exploits3References6
RedhatCVE
RedhatCVE
•added 2023/03/27 9:34 p.m.•81 views

CVE-2023-1664

A flaw was found in Keycloak. This flaw depends on a non-default configuration "Revalidate Client Certificate" to be enabled and the reverse proxy is not validating the certificate before Keycloak. Using this method an attacker may choose the certificate which will be validated by the server. If...

6.5CVSS6.8AI score0.00425EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/17 3:59 p.m.•81 views

CVE-2023-22490

A vulnerability was found in Git. Using a specially-crafted repository, Git can be tricked into using its local clone optimization even when using a non-local transport. Though Git will abort local clones whose source $GITDIR/objects directory contains symbolic links CVE-2022-39253, the objects...

5.5CVSS6.4AI score0.01336EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/06/14 2:30 p.m.•81 views

CVE-2022-32296

The Linux kernel before 5.17.9 allows TCP servers to identify clients by observing what source ports are used. This occurs because of use of Algorithm 4 "Double-Hash Port Selection Algorithm" of RFC 6056...

8.2CVSS3.6AI score0.02972EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/05/20 11:8 p.m.•81 views

CVE-2020-36254

scp.c in Dropbear before 2020.79 mishandles the filename of . or an empty filename, a related issue to CVE-2018-20685...

8.1CVSS1.7AI score0.03681EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2022/03/09 10:13 a.m.•81 views

CVE-2022-0002

A flaw was found in hw. The Intra-mode BTI refers to a variant of Branch Target Injection aka SpectreV2 BTI where an indirect branch speculates to an aliased predictor entry for a different indirect branch in the same predictor mode, and a disclosure gadget at the predicted target transiently...

6.5CVSS2.2AI score0.00447EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2022/03/02 2:50 p.m.•81 views

CVE-2022-0686

An authorization bypass flaw was found in url-parse. While submitting a URL, a local unauthenticated attacker can add a trailing colon :, but omit the port number. This issue enables an open redirect that allows the exposure of sensitive information or spamming of infrastructure outside the...

9.1CVSS2.7AI score0.01827EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/24 6:5 p.m.•81 views

CVE-2022-20616

A missing permissions validation vulnerability was found in the Jenkins Credentials Binding plugin. The form validation method does not perform a permission check which allows attackers with Overall/Read access to validate if a credential ID refers to a secret file credential and whether it’s a z...

4.3CVSS4.2AI score0.00852EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/10/19 9:3 p.m.•81 views

CVE-2021-35588

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated attacker wi...

3.1CVSS2AI score0.03599EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/24 2:40 p.m.•81 views

CVE-2021-3711

A flaw was found in openssl. A miscalculation of a buffer size was found in openssl's SM2 decryption function, allowing up to 62 arbitrary bytes to be written outside of the buffer. A remote attacker could use this flaw to crash an application supporting SM2 signature or encryption algorithm, or,...

9.8CVSS2.3AI score0.87816EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/07/20 8:55 p.m.•81 views

CVE-2021-2369

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Library. Supported versions that are affected are Java SE: 7u301, 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Easily exploitable vulnerability allows...

4.3CVSS2.2AI score0.03444EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/21 8:26 p.m.•81 views

CVE-2021-0512

A flaw out of bounds memory write in the Linux kernel HID subsystem was found in the way user attach USB or other HID device that generates incorrect data inside HID report field. A local user could use this flaw to crash the system or possibly escalate their privileges on the system. Mitigation...

7.8CVSS0.2AI score0.00282EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/15 2:56 p.m.•81 views

CVE-2021-34693

The canbus filesystem in the Linux kernel contains an information leak of kernel memory to devices on the CAN bus network link layer. An attacker with the ability to dump messages on the CAN bus is able to learn of uninitialized stack values by dumbing messages on the can bus. Mitigation Mitigati...

5.5CVSS1.2AI score0.00472EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/15 9:44 a.m.•81 views

CVE-2021-0129

A flaw was found in the Linux kernel. Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access. The highest threat from this vulnerability is to data confidentiality and integrity. Mitigation Mitigation for this issue is...

5.7CVSS1.1AI score0.00827EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/28 12:47 a.m.•81 views

CVE-2021-22141

An open redirect flaw was found in Kibana. An attacker is able to redirect a logged Kibana user to an arbitrary website by specially crafted URL...

6.1CVSS3.6AI score0.00537EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 3:16 p.m.•81 views

CVE-2021-3557

A flaw was found in argocd. Any unprivileged user is able to deploy argocd in their namespace and with the created ServiceAccount argocd-argocd-server, the unprivileged user is able to read all resources of the cluster including all secrets which might enable privilege escalations. The highest...

6.5CVSS1.8AI score0.00752EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•81 views

CVE-2020-26141

A vulnerability was found in Linux kernel's WiFi implementation. An attacker within wireless range can inject a control packet fragment where the kernel does not verify the Message Integrity Check authenticity of fragmented TKIP frames. Mitigation Mitigation for this issue is either not available...

6.5CVSS1.5AI score0.03072EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/03/02 10:32 a.m.•81 views

CVE-2021-25122

A flaw was found in Apache Tomcat. When responding to new h2c connection requests, Apache Tomcat could duplicate request headers and a limited amount of request body from one request to another meaning user A and user B could both see the results of user A's request. The highest threat from this...

7.5CVSS6.8AI score0.18114EPSS
Exploits1References7
RedhatCVE
RedhatCVE
•added 2020/11/13 4:24 a.m.•81 views

CVE-2020-25638

A flaw was found in hibernate-core in versions prior to and including 5.4.23.Final. A SQL injection in the implementation of the JPA Criteria API can permit unsanitized literals when a literal is used in the SQL comments of the query. This flaw could allow an attacker to access unauthorized...

7.4CVSS2.9AI score0.02907EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2016/07/18 2:19 p.m.•81 views

CVE-2016-5387

It was discovered that httpd used the value of the Proxy header from HTTP requests to initialize the HTTPPROXY environment variable for CGI scripts, which in turn was incorrectly used by certain HTTP client implementations to configure the proxy for outgoing HTTP requests. A remote attacker could...

8.1CVSS0.5AI score0.55724EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2025/05/02 7:16 p.m.•81 views

CVE-2025-32777

Volcano is a Kubernetes-native batch scheduling system. Prior to versions 1.11.2, 1.10.2, 1.9.1, 1.11.0-network-topology-preview.3, and 1.12.0-alpha.2, attacker compromise of either the Elastic service or the extender plugin can cause denial of service of the scheduler. This is a privilege...

8.2CVSS6.8AI score0.00396EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/04/13 4:39 p.m.•80 views

CVE-2025-32074

Improper Encoding or Escaping of Output vulnerability in The Wikimedia Foundation Mediawiki - Confirm Account Extension allows Cross-Site Scripting XSS.This issue affects Mediawiki - Confirm Account Extension: from 1.39 through 1.43...

10CVSS6.5AI score0.00196EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2025/04/09 11:23 p.m.•80 views

CVE-2025-3248

Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/validate/code endpoint. A remote and unauthenticated attacker can send crafted HTTP requests to execute arbitrary code...

9.8CVSS8.1AI score0.99972EPSS
Exploits33References1
RedhatCVE
RedhatCVE
•added 2024/05/03 5:52 a.m.•80 views

CVE-2024-32114

A flaw was found in Apache ActiveMQ. This vulnerability contains an insecure default configuration in Jolokia and REST API, allowing any user to bypass security restrictions. The vulnerability exists due to missing authorization in the application's REST API. The default configuration doesn't...

7.5CVSS8.2AI score0.0692EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2024/04/15 8:56 a.m.•80 views

CVE-2024-2757

An infinite loop vulnerability was found in PHP. Certain inputs provided to mbencodemimeheader trigger an endless loop. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and...

7.5CVSS7.3AI score0.01924EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2024/04/11 5:51 a.m.•80 views

CVE-2024-21508

A flaw was found in the MySQL2 npm package. Affected versions of this package are vulnerable to remote code execution RCE via the readCodeFor function due to improper validation of the supportBigNumbers and bigNumberStrings values. Mitigation Mitigation for this issue is either not available or t...

9.8CVSS9.6AI score0.02554EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/02/21 3:2 p.m.•80 views

CVE-2023-3976

A flaw was found in /etc/sudoers in Red Hat OpenStack. As a result of this misconfiguration in the sudoers file, the application is allowed to run restricted commands with root privileges. This issue could allow a local authenticated attacker to gain elevated privileges on the system. This flaw i...

8.8CVSS7.6AI score0.00211EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/12/04 10:56 a.m.•80 views

CVE-2023-6484

A log injection flaw was found in Keycloak. A text string may be injected through the authentication form when using the WebAuthn authentication mode. This issue may have a minor impact to the logs integrity...

5.3CVSS7.6AI score0.01008EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/11 6:19 a.m.•80 views

CVE-2023-39417

IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct dollar quoting, '', or "". If an administrator has installed files of a vulnerable, trusted, non-bundled extension, an attacker with...

7.5CVSS8AI score0.01572EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/13 11:5 a.m.•80 views

CVE-2023-3247

A vulnerability was found in PHP where the weak randomness affects applications that use SOAP with HTTP Digest authentication against a possibly malicious server over HTTP allows a remote authenticated attackers to cause a stack information leak...

4.3CVSS4.6AI score0.00709EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/04 6:17 p.m.•80 views

CVE-2023-3090

A flaw was found in the IPVLAN network driver in the Linux kernel. This issue is caused by missing skb-cb initialization in ipoptionsecho and can lead to an out-of-bounds write stack overflow. This may allow a local user to cause a denial of service or potentially achieve local privilege...

7.8CVSS7.4AI score0.00491EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/06/06 2:55 p.m.•80 views

CVE-2023-34414

The Mozilla Foundation Security Advisory describes this flaw as: The error page for sites with invalid TLS certificates was missing the activation-delay Firefox uses to protect prompts and permission dialogs from attacks that exploit human response time delays. If a malicious page elicited user...

7.5CVSS6AI score0.00897EPSS
Exploits0References5
Total number of security vulnerabilities5000