Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2022/04/11 5:32 a.m.•74 views

CVE-2022-22624

A use-after-free issue was found in WebKitGTK and WPE WebKit. This flaw allows a remote attacker to process maliciously crafted web content, leading to arbitrary code execution...

8.8CVSS4.5AI score0.01065EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/02/14 1:37 p.m.•74 views

CVE-2021-4115

There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and a new one being...

6.2CVSS1.3AI score0.0053EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/11 11:29 a.m.•74 views

CVE-2022-21703

A Cross-site request forgery CSRF vulnerability was found in Grafana. This flaw allows anonymous attackers to elevate their privileges by mounting cross-origin attacks against authenticated high-privilege Grafana users for example, editors or admins. An attacker can exploit this vulnerability for...

8.8CVSS3.8AI score0.02283EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2022/02/04 7:54 p.m.•74 views

CVE-2021-23566

A flaw was found in the nanoid library where the valueOf function allows the reproduction of the last id generated. This flaw allows an attacker to expose sensitive information...

5.5CVSS2.9AI score0.0044EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/11/01 1:14 a.m.•74 views

CVE-2021-42694

A flaw was found in the way Unicode standards are implemented in the context of development environments, which have specialized requirements for rendering text. Homoglyphs are different Unicode characters that, to the naked eye, look the same. An attacker could use homoglyphs to deceive a human...

8.5CVSS1.7AI score0.04485EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2021/10/15 2:51 a.m.•74 views

CVE-2021-42340

A memory leak flaw was found in Apache Tomcat, where an HTTP upgrade connection does not release for WebSocket connections once the WebSocket connection is closed. If a sufficient number of such requests are made, an OutOfMemoryError occurs, leading to a denial of service. The highest threat from...

7.5CVSS2AI score0.10997EPSS
Exploits0References8
RedhatCVE
RedhatCVE
•added 2021/10/04 5:53 p.m.•74 views

CVE-2021-41864

An out-of-bounds OOB memory write flaw was found in preallocelemsandfreelist in kernel/bpf/stackmap.c in the bpf in the Linux kernel. In this flaw, the multiplication to calculate the size could lead to an integer overflow which could allow a local attacker, with a special user privilege, to gain...

7.8CVSS2.2AI score0.0038EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/18 9:59 a.m.•74 views

CVE-2021-2432

Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...

4.3CVSS2.7AI score0.03701EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/11 4:51 p.m.•74 views

CVE-2021-38201

A flaw was found in the Linux kernel that allows remote attackers to cause a denial of service xdrsetpagebase slab-out-of-bounds access by performing many NFS 4.2 READPLUS operations. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue is...

7.5CVSS1.7AI score0.03365EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/04 6:56 p.m.•74 views

CVE-2021-3682

A flaw was found in the USB redirector device emulation of QEMU. It occurs when dropping packets during a bulk transfer from a SPICE client due to the packet queue being full. A malicious SPICE client could use this flaw to make QEMU call free with faked heap chunk metadata, resulting in a crash ...

8.5CVSS1.4AI score0.02904EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/03 6:24 a.m.•74 views

CVE-2021-3664

An input validation flaw was found in the nodejs url-parse library, which incorrectly parses a URL that contains backslashes. This flaw allows an attacker to specify a relative URL and cause the browser to redirect to a malicious website. The highest threat from this vulnerability is to integrity...

5.3CVSS4.1AI score0.01964EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2021/07/14 6:27 p.m.•74 views

CVE-2021-20300

A flaw was found in OpenEXR's hufUncompress function in OpenEXR/IlmImf/ImfHuf.cpp. This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. The highest threat from this vulnerability is to system availability...

7.1CVSS2.9AI score0.00913EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/14 5:31 p.m.•74 views

CVE-2021-3648

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3530. Reason: This candidate is a reservation duplicate of CVE-2021-3530. Notes: All CVE users should reference CVE-2021-3530 instead of this...

7.5CVSS6.4AI score0.024EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/01 5:36 p.m.•74 views

CVE-2021-32690

A vulnerability was discovered in Helm, which could allow credentials associated with one Helm repository to be leaked to another repository referenced by the first one. In order to exploit this vulnerability, an attacker would need to control a repository trusted by the configuration of the targ...

8.6CVSS3.6AI score0.01395EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/18 5:59 p.m.•74 views

CVE-2021-3611

A stack overflow vulnerability was found in the Intel HD Audio device intel-hda of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. Mitigation...

6.5CVSS1.4AI score0.00489EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/02 1:52 a.m.•74 views

CVE-2021-29967

Mozilla developers reported memory safety bugs present in Firefox 88 and Firefox ESR 78.11. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Thunderbird 78.11,...

8.8CVSS2.9AI score0.01368EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 10:37 a.m.•74 views

CVE-2021-30465

The runc package is vulnerable to a symlink exchange attack whereby an attacker can request a seemingly innocuous container configuration that results in the host filesystem being bind-mounted into the container. The highest threat from this vulnerability is to data confidentiality and integrity ...

8.5CVSS1.7AI score0.06604EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/11/10 7:52 p.m.•74 views

CVE-2020-8695

A vulnerability was found in Intel's implementation of RAPL Running Average Power Limit. An attacker with a local account could query the power management functionality to intelligently infer SGX enclave computation values by measuring power usage in the RAPL subsystem. Mitigation Until a firmwar...

5.5CVSS4.1AI score0.00414EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/08/11 8:13 p.m.•74 views

CVE-2020-9490

A flaw was found in Apache httpd in versions prior to 2.4.46. A specially crafted Cache-Digest header triggers negative argument to memmove that could lead to a crash and denial of service. The highest threat from this vulnerability is to system availability. Mitigation Configuring the HTTP/2...

5CVSS3.5AI score0.89744EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/02/10 11:44 a.m.•74 views

CVE-2019-13990

The Terracotta Quartz Scheduler is susceptible to an XML external entity attack XXE through a job description. This issue stems from inadequate handling of XML external entity XXE declarations in the initDocumentParser function within xml/XMLSchedulingDataProcessor.java. By enticing a victim to...

9.8CVSS9.3AI score0.162EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2018/03/08 8:19 p.m.•74 views

CVE-2017-18214

The moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via a crafted date string, a different vulnerability than CVE-2016-4055...

7.8CVSS3.5AI score0.09905EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2024/07/03 11:20 p.m.•73 views

CVE-2024-34750

A vulnerability was found in Apache Tomcat. When processing an HTTP/2 stream, Tomcat did not handle some cases of excessive HTTP headers correctly. This issue led to a miscounting of active HTTP/2 streams, which in turn led to using an incorrect infinite timeout that allowed connections to remain...

7.5CVSS7.3AI score0.04602EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/26 7:33 p.m.•73 views

CVE-2024-22201

A flaw was found in Jetty, a Java based web server and servlet engine. If an HTTP/2 connection gets TCP congested, it remains open and idle, and connections may be leaked when it times out. An attacker can cause many connections to end up in this state, and the server may run out of file...

7.5CVSS7.2AI score0.01433EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2024/02/23 4:35 p.m.•73 views

CVE-2023-42282

A vulnerability was found in the NPM IP Package. This flaw allows an attacker to perform arbitrary code execution and obtain sensitive information via the isPublic function by inducing a Server-Side Request Forgery SSRF attack and obtaining access to normally inaccessible resources. Mitigation...

9.8CVSS8.9AI score0.01613EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2024/02/16 5:21 p.m.•73 views

CVE-2023-46809

A flaw was found in Node.js. The privateDecrypt API of the crypto library may allow a covert timing side-channel during PKCS1 v1.5 padding error handling. This issue revealed significant timing differences in decryption for valid and invalid ciphertexts, which may allow a remote attacker to decry...

5.9CVSS7.3AI score0.01302EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/01/26 6:49 p.m.•73 views

CVE-2022-48622

A flaw was found in GNOME's GdkPixbuf library, a library used to load image data in various formats used by GDK for handling graphical assets. This issue occurs when loading a crafted ANI animated cursor file file, which may lead to a heap based out-of-bounds write, causing memory corruption. Whe...

7.3CVSS7.4AI score0.00415EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/06/15 5:45 a.m.•73 views

CVE-2023-2727

A flaw was found in Kubernetes, where users may be able to launch containers using images restricted by the ImagePolicyWebhook when using ephemeral containers. Kubernetes clusters are only affected if the ImagePolicyWebhook admission plugin is used together with ephemeral containers. Mitigation...

6.5CVSS6.4AI score0.01134EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/31 10:35 a.m.•73 views

CVE-2022-40898

An issue discovered in Python Packaging Authority PyPA Wheel 0.37.1 and earlier allows remote attackers to cause a denial of service via attacker controlled input to wheel cli...

7.5CVSS7.2AI score0.02659EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/01/25 1:5 p.m.•73 views

CVE-2021-46795

A Time-of-check to time-of-use TOCTOU vulnerability exists in hw. This flaw allows an attacker to use a compromised BIOS to cause the trusted execution environment TEE operating system to read memory out-of-bounds, potentially resulting in a denial of service. Mitigation Please contact AMD for mo...

1.9CVSS4.4AI score0.00137EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/09/26 6:19 a.m.•73 views

CVE-2022-38750

A flaw was found in the snakeyaml package due to a stack-overflow in parsing YAML files. By persuading a victim to open a specially-crafted file, a remote attacker could cause the application to crash...

5.5CVSS4AI score0.01025EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/05/21 12:23 a.m.•73 views

CVE-2018-11769

CouchDB administrative users before 2.2.0 can configure the database server via HTTPS. Due to insufficient validation of administrator-supplied configuration settings via the HTTP API, it is possible for a CouchDB administrator user to escalate their privileges to that of the operating system's...

9CVSS3.6AI score0.90602EPSS
Exploits18References1
RedhatCVE
RedhatCVE
•added 2022/05/21 12:4 a.m.•73 views

CVE-2021-26910

Firejail before 0.9.64.4 allows attackers to bypass intended access restrictions because there is a TOCTOU race condition between a stat operation and an OverlayFS mount operation...

7.8CVSS5.5AI score0.00444EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2022/05/02 1:25 p.m.•73 views

CVE-2022-28391

An escape sequence injection attack was found in BusyBox on Alpine. For this issue to occur, a remote host's virtual terminal must contain an escape sequence, and the victim must then execute netstat. This flaw allows an attacker can inject arbitrary code, leading to a loss of integrity...

8.8CVSS3.6AI score0.03505EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/22 9:3 p.m.•73 views

CVE-2022-29589

Crypt Server before 3.3.0 allows XSS in the index view. This is related to serial, computername, and username...

6.1CVSS3.8AI score0.00632EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/21 8:49 p.m.•73 views

CVE-2022-0494

A kernel information leak flaw was identified in the scsiioctl function in drivers/scsi/scsiioctl.c in the Linux kernel. This flaw allows a local attacker with a special user privilege CAPSYSADMIN or CAPSYSRAWIO to create issues with confidentiality. Mitigation Mitigation for this issue is either...

4.9CVSS2.1AI score0.00416EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/11 3:37 p.m.•73 views

CVE-2021-39713

A use-after-free flaw was found in the Linux kernel’s network scheduling subsystem due to a race condition. This flaw allows a local user to cause a denial of service memory corruption or crash or privilege escalation. Mitigation Mitigation for this issue is either not available or the currently...

7CVSS1.4AI score0.0021EPSS
Exploits1References9
RedhatCVE
RedhatCVE
•added 2022/02/21 11:18 a.m.•73 views

CVE-2022-23645

An out-of-bounds read vulnerability was found in swtpm. The vulnerability exists due to a boundary condition when the byte array representing the state of the TPM is accessed. This flaw allows an attacker to send a specially crafted header, triggering an out-of-bounds read access on the byte arra...

6.2CVSS2AI score0.00404EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/01/28 7:41 a.m.•73 views

CVE-2022-22942

A use-after-free flaw was found in the Linux kernel’s vmwexecbufcopyfenceuser function in drivers/gpu/drm/vmwgfx/vmwgfxexecbuf.c in vmwgfx. This flaw allows a local attacker with user privileges to cause a privilege escalation problem. Mitigation Mitigation for this issue is to skip loading the...

7.8CVSS1.7AI score0.02579EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2021/12/29 6:20 p.m.•73 views

CVE-2021-39685

An out of bounds memory access flaw in the Linux kernel's USB Peripheral Controller functionality was found in the way users call control request handlers in a specific way for the USB gadget. A local user could use this flaw to crash the system or escalate their privileges on the system...

7.8CVSS0.9AI score0.00461EPSS
Exploits2References6
RedhatCVE
RedhatCVE
•added 2021/10/19 9:3 p.m.•73 views

CVE-2021-35565

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated attacke...

5.3CVSS3.3AI score0.06886EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/29 2:25 p.m.•73 views

CVE-2021-37600

An integer truncation flaw was found in util-linux that potentially causes a buffer overflow if an attacker can use system resources that lead to a large number in the /proc/sysvipc/sem file. The highest threat from this vulnerability is to system availability...

5.5CVSS3.3AI score0.00661EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/01 5:23 p.m.•73 views

CVE-2021-35938

A symbolic link issue was found in rpm. It occurs when rpm sets the desired permissions and credentials after installing a file. A local unprivileged user could use this flaw to exchange the original file with a symbolic link to a security-critical file and escalate their privileges on the system...

6.7CVSS6.1AI score0.00491EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/07/01 5:23 p.m.•73 views

CVE-2021-3631

A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to confidentiality a...

6.3CVSS1.8AI score0.00493EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/26 7:42 a.m.•73 views

CVE-2021-22901

A use-after-free flaw was found in the way curl handled TLS session data. The curl versions using the OpenSSL library as their TLS backend could use freed memory after TLS session renegotiation was performed by the OpenSSL library. A malicious TLS server could use this flaw to crash or, possibly,...

8.1CVSS3.7AI score0.60122EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/05/20 2:56 p.m.•73 views

CVE-2021-29622

An open redirect vulnerability was found in Prometheus. By specially crafted URL and a /new endpoint, an attacker can redirect user to any other URL...

6.5CVSS2.7AI score0.1956EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/05/05 1:40 p.m.•73 views

CVE-2020-10732

A flaw was found in the Linux kernel’s implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data. Mitigation Possible mitigation would be to disable core dumps system-wide by setting: hard core 0 In the...

3.6CVSS5.9AI score0.00617EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/10 9:57 p.m.•73 views

CVE-2019-14899

A flaw was found in openvpn. A malicous access point or adjacent user can determine if a connected user is using a VPN by making positive inferences about the websites they are visiting, and determining the correct sequence and acknowledgement numbers in use, which allows the attacker to inject...

7.4CVSS3AI score0.00838EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2016/11/02 8:47 a.m.•73 views

CVE-2016-8622

The URL percent-encoding decode function in libcurl before 7.51.0 is called curleasyunescape. Internally, even if this function would be made to allocate a unscape destination buffer larger than 2GB, it would return that new length in a signed 32 bit integer variable, thus the length would get...

9.8CVSS1.7AI score0.0467EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2026/01/07 9:33 a.m.•72 views

CVE-2019-7711

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. The undocumented shell command "prompt" sets the user controlled shell's prompt value, which is used as a format string input to printf, resulting in an information leak of memory addresses...

7.5CVSS6.8AI score0.01499EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2024/06/11 2:28 p.m.•72 views

CVE-2024-5585

In PHP, the fix for CVE-2024-1874 does not work if the command name includes trailing spaces. Original issue: when using procopen command with array syntax, due to insufficient escaping, if the arguments of the executed command are controlled by a malicious user, the user can supply arguments tha...

9.4CVSS8.8AI score0.32568EPSS
Exploits3References5
Total number of security vulnerabilities5000