Lucene search
K
RedhatcveMost viewed

206341 matches found

RedhatCVE
RedhatCVE
•added 2022/06/15 5:34 a.m.•75 views

CVE-2022-24436

A potential vulnerability in some Intel® processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure. Mitigation Currently, there is no mitigation for this flaw. Intel has provided some guidance to developers of...

6.5CVSS6.3AI score0.12124EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2022/05/25 2:21 a.m.•75 views

CVE-2022-29217

A vulnerability was found in python-jwt. This issue happens when PyJWT supports multiple different JWT signing algorithms. This flaw allows an attacker submitting the JWT token to choose the used signing algorithm, leading to key confusion through non-blocklisted public key formats...

7.5CVSS1.4AI score0.012EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/05/02 7:38 a.m.•75 views

CVE-2022-25647

A flaw was found in gson, which is vulnerable to Deserialization of Untrusted Data via the writeReplace method in internal classes. This issue may lead to availability attacks...

7.7CVSS3.4AI score0.1158EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/30 1:13 p.m.•75 views

CVE-2021-21290

In Netty there is a vulnerability on Unix-like systems involving an insecure temp file. When netty's multipart decoders are used, a local information disclosure can occur via the local system temporary directory if temporary storing uploads on the disk is enabled. On unix-like systems, the...

6.2CVSS1.3AI score0.01777EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/28 4:47 a.m.•75 views

CVE-2018-25032

An out-of-bounds access flaw was found in zlib, which allows memory corruption when deflating ex: when compressing if the input has many distant matches. For some rare inputs with a large number of distant matches crafted payloads, the buffer into which the compressed or deflated data is written...

8.2CVSS1.8AI score0.51733EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2022/03/24 5:35 p.m.•75 views

CVE-2022-24052

A flaw was found in MariaDB. Lack of input validation leads to a heap buffer overflow. This flaw allows an authenticated, local attacker with at least a low level of privileges to submit a crafted SQL query to MariaDB and escalate their privileges to the level of the MariaDB service user, running...

7.8CVSS4.2AI score0.00645EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/23 9:22 a.m.•75 views

CVE-2022-24407

A flaw was found in the SQL plugin shipped with Cyrus SASL. The vulnerability occurs due to failure to properly escape SQL input and leads to an improper input validation vulnerability. This flaw allows an attacker to execute arbitrary SQL commands and the ability to change the passwords for othe...

8.8CVSS5.4AI score0.04123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/21 5:51 a.m.•75 views

CVE-2022-25235

A flaw was found in expat. Passing malformed 2- and 3-byte UTF-8 sequences for example, from start tag names to the XML processing application on top of expat can lead to arbitrary code execution. This issue is dependent on how invalid UTF-8 is handled inside the XML processor. Mitigation There i...

9.8CVSS1.4AI score0.04955EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/15 5:20 p.m.•75 views

CVE-2022-21698

A denial of service attack was found in prometheus/clientgolang. This flaw allows an attacker to produce a denial of service attack on an HTTP server by exploiting the InstrumentHandlerCounter function in the version below 1.11.1, resulting in a loss of availability...

7.5CVSS8.3AI score0.05994EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/31 3:6 p.m.•75 views

CVE-2021-44142

An out-of-bounds heap read write vulnerability was found in Samba. Due to a boundary error when processing EA metadata while opening files in smbd within the VFS Samba module vfsfruit, a remote attacker with ability to write to file's extended attributes can trigger an out-of-bounds write and...

9.9CVSS1.9AI score0.74042EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/09/29 3:51 p.m.•75 views

CVE-2021-3521

There is a flaw in RPM's signature functionality. OpenPGP subkeys are associated with a primary key via a "binding signature."1 RPM does not check the binding signature of subkeys prior to importing them. If an attacker is able to add or socially engineer another party to add a malicious subkey t...

4.7CVSS1AI score0.00302EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/15 1:33 p.m.•75 views

CVE-2021-3752

A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The highest threat from this vulnerability is to...

7.9CVSS1AI score0.01736EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/09/15 7:22 a.m.•75 views

CVE-2021-22947

A flaw was found in curl. The flaw lies in how curl handles cached or pipelined responses that it receives from either a IMAP, POP3, SMTP or FTP server before the TLS upgrade using STARTTLS. In such a scenario curl even after upgrading to TLS would trust these cached responses treating them as...

6.1CVSS0.4AI score0.02799EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/07/27 5:51 p.m.•75 views

CVE-2021-37576

A flaw was found on the Linux kernel. On the PowerPC platform, the KVM guest allows the OS users to cause host OS memory corruption via rtasargs.nargs. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation Mitigation for thi...

7.8CVSS1.6AI score0.00575EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/07/20 8:55 p.m.•75 views

CVE-2021-2388

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 8u291, 11.0.11, 16.0.1; Oracle GraalVM Enterprise Edition: 20.3.2 and 21.1.0. Difficult to exploit vulnerability allows unauthenticated...

7.5CVSS2.4AI score0.04008EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/14 1:29 a.m.•75 views

CVE-2021-29969

If Thunderbird was configured to use STARTTLS for an IMAP connection, and an attacker injected IMAP server responses prior to the completion of the STARTTLS handshake, then Thunderbird didn't ignore the injected data. This could have resulted in Thunderbird showing incorrect information, for...

5.9CVSS2.9AI score0.012EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/13 5:52 p.m.•75 views

CVE-2021-35515

A flaw was found in apache-commons-compress. When reading a specially crafted 7Z archive, the construction of the list of codecs that decompress an entry can result in an infinite loop. This flaw allows the mounting of a denial of service attack against services that use Compress' SevenZ package...

7.5CVSS3.5AI score0.11879EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2021/07/08 9:35 a.m.•75 views

CVE-2021-32723

A flaw was found in npm-prismjs. An attacker can craft a string that will take a very long time to highlight when used to work with un-trusted text resulting in ReDoS. This can affect the system availability. There is no known risk of privilege escalation on data compromise. Mitigation As a...

7.4CVSS2.2AI score0.01433EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/09 10:14 a.m.•75 views

CVE-2021-3589

An authorization flaw was found in Foreman Ansible. An authenticated attacker with certain permissions to create and run Ansible jobs can access hosts through job templates. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8CVSS2.9AI score0.01031EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/02 1:43 a.m.•75 views

CVE-2021-29964

A locally-installed hostile program could send WMCOPYDATA messages that Firefox would process incorrectly, leading to an out-of-bounds read. This bug only affects Firefox on Windows. Other operating systems are unaffected.. This vulnerability affects Thunderbird 78.11, Firefox 89, and Firefox ESR...

7.1CVSS1.5AI score0.00787EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/28 5:10 p.m.•75 views

CVE-2021-3569

A stack corruption bug was found in libtpms while decrypting data using RSA. This flaw could result in a SIGBUS bad memory access and termination of swtpm. The highest threat from this vulnerability is to system availability...

2.1CVSS2.5AI score0.00259EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/24 4:51 p.m.•75 views

CVE-2020-15436

A use-after-free flaw was observed in blkdevget, in fs/blockdev.c after a call to blkdevget fails, and its refcount gets freed/released. This problem may cause a denial of service problem with a special user privilege, and may even lead to a confidentiality issue. Mitigation Mitigation for this...

7.2CVSS1.9AI score0.00928EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/10/21 6:33 p.m.•75 views

CVE-2020-15999

A heap buffer overflow leading to out-of-bounds write was found in freetype. Memory allocation based on truncated PNG width and height values allows for an out-of-bounds write to occur in application memory when an attacker supplies a specially crafted TTF file. Mitigation Red Hat has investigate...

9.6CVSS7.6AI score0.5063EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2020/07/15 6:37 a.m.•75 views

CVE-2020-13935

A flaw was found in Apache Tomcat, where the payload length in a WebSocket frame was not correctly validated. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service. The highest threat from this vulnerability is to...

5CVSS7.5AI score0.87553EPSS
Exploits1References8
RedhatCVE
RedhatCVE
•added 2020/06/23 7:26 p.m.•75 views

CVE-2020-14298

The version of docker as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:0053 advisory included an incorrect version of runc missing the fix for CVE-2019-5736, which was previously fixed via RHSA-2019:0304. This issue could allow a malicious or compromised container to compromise the...

9.3CVSS3.7AI score0.9857EPSS
Exploits33References3
RedhatCVE
RedhatCVE
•added 2019/10/11 5:59 p.m.•75 views

CVE-2019-10161

It was discovered that libvirtd would permit read-only clients to use the virDomainSaveImageGetXMLDesc API, specifying an arbitrary path which would be accessed with the permissions of the libvirtd process. An attacker with access to the libvirtd socket could use this to probe the existence of...

8.8CVSS3.2AI score0.00516EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/01/16 10:49 a.m.•75 views

CVE-2018-20679

An issue was discovered in BusyBox before 1.30.0. An out of bounds read in udhcp components consumed by the DHCP server, client, and relay allows a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to verification in udhcpgetoption in...

7.5CVSS3.6AI score0.07694EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2016/08/08 9:19 a.m.•75 views

CVE-2016-6515

It was found that OpenSSH did not limit password lengths for password authentication. A remote unauthenticated attacker could use this flaw to temporarily trigger high CPU consumption in sshd by sending long passwords...

7.8CVSS2.4AI score0.58568EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2024/05/21 11:0 a.m.•74 views

CVE-2024-35195

An incorrect control flow implementation vulnerability was found in Requests. If the first request in a session is made with verify=False, all subsequent requests to the same host will continue to ignore cert verification...

5.6CVSS5.3AI score0.0034EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/15 6:55 a.m.•74 views

CVE-2024-24990

A flaw was found in the nginx HTTP/3 implementation. This issue may allow an attacker to use a specially crafted QUIC session to trigger a use-after-free condition, causing a worker process to crash, leading to a denial of service...

7.5CVSS7AI score0.00914EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/01/10 3:6 p.m.•74 views

CVE-2024-21312

A vulnerability was found in .NET due to insufficient validation of user-supplied input in the .NET Framework. This flaw allows a remote attacker to pass specially crafted input to the application and perform a denial of service DoS attack...

7.5CVSS7.4AI score0.03578EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/12/29 2:0 p.m.•74 views

CVE-2023-7104

A vulnerability was found in SQLite3. This issue affects the sessionReadRecord function of the ext/session/sqlite3session.c function in the make alltest Handler component. Manipulation may cause a heap-based buffer overflow to occur. Mitigation Mitigation for this issue is either not available or...

7.3CVSS6.8AI score0.01249EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/12/18 7:56 a.m.•74 views

CVE-2023-24023

A flaw was found in Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4. This issue may allow certain man-in-the-middle attacks that force a short key length and might lead to discovery of the encryption key and live...

6.8CVSS7.8AI score0.01297EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/11/16 7:45 p.m.•75 views

CVE-2023-34062

A flaw was found in the Reactor Netty HTTP Server. If the server is configured to serve static resources, an attacker can use a specially crafted URL that may allow unauthorized access to privileged data on the server...

7.5CVSS7.3AI score0.01124EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/30 10:15 a.m.•74 views

CVE-2023-4574

The Mozilla Foundation Security Advisory describes this flaw as: When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of the callbacks finished. This could...

7.5CVSS7.1AI score0.00571EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/30 8:15 a.m.•74 views

CVE-2020-22218

A flaw was found in the libssh2 library. An out-of-bounds access issue can occur due to an improper initialization of a variable, resulting in a crash in the application linked to the library...

7.5CVSS7.1AI score0.00914EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/28 7:15 p.m.•74 views

CVE-2023-4563

A use-after-free flaw was found in the nftables sub-component due to a race problem between the set GC and transaction in the Linux Kernel. This flaw allows a local attacker to crash the system due to a missing call to nftsetelemmarkbusy, causing double deactivation of the element and possibly...

6.2AI score0.00218EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2023/08/23 1:49 p.m.•74 views

CVE-2023-3893

A vulnerability was found in Kubernetes. This flaw allows a user who can create pods on Windows nodes running kubernetes-csi-proxy to escalate to admin privileges on those nodes...

8.8CVSS6.9AI score0.02864EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/01 6:30 p.m.•74 views

CVE-2023-0594

A flaw was found in the grafana package. This flaw allows a malicious user with the ability to introduce trace data to provide a JavaScript that changes the password for the user viewing the trace view this could be an admin to a known password, thus gaining access to the admin account. Mitigatio...

7.3CVSS5.4AI score0.09216EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/11/28 6:30 p.m.•74 views

CVE-2022-37601

A prototype pollution vulnerability was found in the parseQuery function in parseQuery.js in the webpack loader-utils via the name variable in parseQuery.js. This flaw can lead to a denial of service or remote code execution...

8.1CVSS5.6AI score0.02601EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/09/19 5:43 a.m.•74 views

CVE-2021-25749

A flaw was found in Kubernetes. This issue allows Windows workloads to run as a ContainerAdministrator even when the workloads set the runAsNonRoot option to true...

3.8CVSS2.6AI score0.00211EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/08/30 9:14 a.m.•74 views

CVE-2022-3061

Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl interface. The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error...

6.2CVSS4.3AI score0.00271EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/14 11:38 a.m.•74 views

CVE-2020-10672

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS3.5AI score0.02959EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/05/11 11:32 a.m.•74 views

CVE-2022-29526

A flaw was found in the syscall.Faccessat function when calling a process by checking the group. This flaw allows an attacker to check the process group permissions rather than a member of the file's group, affecting system availability...

6.2CVSS3AI score0.02593EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/06 4:55 p.m.•74 views

CVE-2022-21451

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.4CVSS2.1AI score0.01196EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/30 1:11 p.m.•74 views

CVE-2021-33198

A flaw was found in Go, where it attempts to allocate excessive memory. This issue may cause panic or unrecoverable fatal error if passed inputs with very large exponents. The highest threat from this vulnerability is to system availability...

7.5CVSS7.4AI score0.034EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/04/26 6:40 a.m.•74 views

CVE-2022-27376

A use-after-free flaw was found in Maria DB. The MariaDB Server contains a use-after-free in the component, Itemargs::walkarg, which is exploited via specially crafted SQL statements, affecting availability...

7.5CVSS3.6AI score0.02199EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/25 8:31 a.m.•74 views

CVE-2021-25746

A flaw was found in the ingress-nginx controller. When a user creates or updates ingress objects, credentials of the ingress-nginx controller can be obtained by accessing .metadata.annotations...

7.6CVSS2.7AI score0.01373EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/13 9:52 a.m.•74 views

CVE-2022-29048

A flaw was found in the Jenkins subversion plugin. The Jenkins subversion plugin allows attackers to connect to an attacker-specified URL. This flaw allows attackers to trick the user into visiting their website that contains a malicious script, allowing submission to the server on behalf of the...

4.3CVSS3.4AI score0.01802EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/11 5:32 a.m.•74 views

CVE-2022-22624

A use-after-free issue was found in WebKitGTK and WPE WebKit. This flaw allows a remote attacker to process maliciously crafted web content, leading to arbitrary code execution...

8.8CVSS4.5AI score0.01065EPSS
Exploits0References3
Total number of security vulnerabilities5000