Lucene search
K
RedhatcveMost viewed

206341 matches found

RedhatCVE
RedhatCVE
•added 2021/07/14 6:22 p.m.•71 views

CVE-2021-20302

A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can submit a crafted single-part non-image to be processed by OpenEXR, to trigger a floating-point exception error. The highest threat from this vulnerability is to system availability...

7.1CVSS2AI score0.00934EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/22 4:29 p.m.•71 views

CVE-2021-29060

A Regular Expression Denial of Service ReDOS vulnerability was found in Color-String, which occurs when the application is provided and checks a crafted invalid HWB string. The highest threat from this vulnerability is to system availability...

5.3CVSS3.5AI score0.03134EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/06/21 6:26 p.m.•71 views

CVE-2021-33624

A flaw was found in the Linux kernel's BPF subsystem, where protection against speculative execution attacks Spectre mitigation can be bypassed. The highest threat from this vulnerability is to confidentiality. Mitigation The default Red Hat Enterprise Linux kernel setting prevents unprivileged...

4.7CVSS2.5AI score0.00922EPSS
Exploits3References5
RedhatCVE
RedhatCVE
•added 2021/06/08 6:52 a.m.•71 views

CVE-2021-3575

A heap-based buffer overflow was found in OpenJPEG. This flaw allows an attacker to execute arbitrary code with the permissions of the application compiled against OpenJPEG...

7.8CVSS4.3AI score0.01536EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/03/15 7:17 p.m.•71 views

CVE-2021-28375

An issue was discovered in the Linux kernel. Fastrpcinternalinvoke in drivers/misc/fastrpc.c does not prevent user applications from sending kernel RPC messages. This is a related issue to CVE-2019-2308. Mitigation Mitigation for this issue is either not available or the currently available optio...

7.8CVSS7.4AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/09/09 4:51 p.m.•71 views

CVE-2020-1968

A flaw was found in openssl in versions 1.0.2 to 1.0.2w. A Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman DH based ciphersuite. In such a case this would result in th...

5.9CVSS4.9AI score0.04803EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/07/15 9:39 a.m.•71 views

CVE-2020-14583

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

5.1CVSS2AI score0.04029EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/06/18 11:55 a.m.•71 views

CVE-2019-20838

libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. Mitigation Do not use more than one fixed quantifier with \R or \X with UTF disabled in PCRE or PCRE2, as these are the...

5CVSS8.7AI score0.0277EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/06/02 5:21 p.m.•71 views

CVE-2020-8165

A flaw was found in rubygem-activesupport. An untrusted user input can be written to the cache store using the raw: true parameter which can lead to the result being evaluated as a marshaled object instead of plain text. The threat from this vulnerability is to data confidentiality and integrity ...

7.5CVSS1.4AI score0.45732EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2020/03/06 4:40 p.m.•71 views

CVE-2019-15126

An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors related to state transitions in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a...

8.8CVSS2.4AI score0.07709EPSS
Exploits9References3
RedhatCVE
RedhatCVE
•added 2019/10/07 6:36 a.m.•71 views

CVE-2019-16370

The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related issue to CVE-2005-4900...

5.9CVSS3.1AI score0.01025EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2017/03/08 11:53 a.m.•71 views

CVE-2017-5638

A flaw was reported in Apache Struts 2 that could allow an attacker to perform remote code execution with a malicious Content-Type value...

10CVSS4.4AI score0.99999EPSS
Exploits44References2
RedhatCVE
RedhatCVE
•added 2024/11/05 11:59 a.m.•70 views

CVE-2023-52920

In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction jump history to record instructions that performed register spill/fill to/from stack, regardless if this was done through read-only r10...

5.5CVSS7.3AI score0.00244EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/05/14 6:54 p.m.•70 views

CVE-2024-4367

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context...

7.5CVSS6.3AI score0.72648EPSS
Exploits15References5
RedhatCVE
RedhatCVE
•added 2024/03/28 11:55 a.m.•70 views

CVE-2023-52628

An out-of-bounds write flaw was found in the Linux kernel’s Netfilter functionality. This flaw allows a local user to crash or potentially escalate their privileges on the system. Mitigation In order to trigger the issue, it requires the ability to create user/net namespaces. On non-containerized...

7CVSS7.1AI score0.00675EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/14 9:32 p.m.•70 views

CVE-2024-25744

A flaw was found in the Linux kernel. A VMM can inject external interrupts on any arbitrary vector at any time, which may allow the guest OS to be manipulated from the VMM side. Mitigation This vulnerability can be mitigated by disabling 32-bit emulation by default for TDX and SEV. The user can...

5.6CVSS7.3AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/02 1:11 a.m.•70 views

CVE-2024-24557

A vulnerability was found in github.com/moby/moby. The classic builder cache system in moby is vulnerable to cache poisoning if the image is built using a 'FROM scratch' in Dockerfile. This flaw allows an attacker who has knowledge of the Dockerfile to create a malicious cache that would be pulle...

6.9CVSS6.4AI score0.00258EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/12/30 6:30 p.m.•70 views

CVE-2023-7192

A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker with CAPNETADMIN privileges to cause a denial of service DoS attack due to a refcount overflow. Mitigation Triggering this issue requires th...

5.5CVSS5.8AI score0.00301EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/05/18 7:16 p.m.•70 views

CVE-2023-32314

A flaw was found in the vm2 sandbox. When a host object is created based on the specification of Proxy, an attacker can bypass the sandbox protections. This may allow an attacker to run remote code execution on the host running the sandbox. This vulnerability impacts the confidentiality, integrit...

9.8CVSS7.7AI score0.05642EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/04/19 7:30 a.m.•70 views

CVE-2023-2176

A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux kernel. An improper cleanup results in an out-of-boundary read. This flaw allows a local user to crash or escalate privileges on the system. Mitigation Mitigation for this issue is either not...

7.8CVSS7.6AI score0.0024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/18 7:5 p.m.•70 views

CVE-2022-36760

A flaw was found in the modproxyajp module of httpd. The connection is not closed when there is an invalid Transfer-Encoding header, allowing an attacker to smuggle requests to the AJP server, where it forwards requests...

6.5CVSS8.3AI score0.01879EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/11/10 7:25 p.m.•70 views

CVE-2022-37026

A Client Authentication Bypass was found in Erlang/OTP. This issue occurs in certain client-certification situations for SSL, TLS, and DTLS...

9.4CVSS3.3AI score0.01167EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2022/05/24 3:33 p.m.•70 views

CVE-2022-1364

No description is available for this CVE...

1.3AI score0.1372EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2022/04/25 12:22 p.m.•70 views

CVE-2022-29599

A flaw was found in the maven-shared-utils package. This issue allows a Command Injection due to improper escaping, allowing a shell injection attack...

7.5CVSS9.4AI score0.04031EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/20 8:47 a.m.•70 views

CVE-2022-21496

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JNDI. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS2.2AI score0.02651EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/13 6:28 a.m.•70 views

CVE-2021-31805

The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %... syntax. Using forced OGNL evaluation on untrusted user input can lead to a...

9.8CVSS1.8AI score0.95922EPSS
Exploits16References3
RedhatCVE
RedhatCVE
•added 2022/03/31 8:47 p.m.•70 views

CVE-2022-1055

A use-after-free vulnerability was found in the tcnewtfilter function in net/sched/clsapi.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation. Mitigation On non-containerized deployments of Red Hat Enterprise Linux 8, you can disable user...

8.6CVSS1.9AI score0.005EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/03/16 11:47 a.m.•70 views

CVE-2020-36518

A flaw was found in the Jackson Databind package. This cause of the issue is due to a Java StackOverflow exception and a denial of service via a significant depth of nested objects...

5CVSS7.2AI score0.0486EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/02/21 10:46 a.m.•70 views

CVE-2022-22620

A use-after-free vulnerability was found in WebKitGTK. The vulnerability occurs when processing HTML content in WebKit. This flaw allows a remote attacker to trick the victim into opening a specially crafted web page, triggering a use-after-free error and leading to the execution of arbitrary cod...

8.8CVSS6.2AI score0.16342EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/12/17 8:5 p.m.•70 views

CVE-2021-4044

A flaw was found in the way OpenSSL verified certificates via the X509verifycert function. An internal error was not correctly validated causing application crashes or invalid application behavior...

7.5CVSS2.6AI score0.50099EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/12/14 4:27 p.m.•70 views

CVE-2021-4112

A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment. Mitigation Red Hat has investigated whether possible...

8.8CVSS3.5AI score0.00232EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/11/04 4:39 p.m.•70 views

CVE-2021-43267

A flaw was discovered in the cryptographic receive code in the Linux kernel's implementation of transparent interprocess communication. An attacker, with the ability to send TIPC messages to the target, can corrupt memory and escalate privileges on the target system. Mitigation The TIPC module wi...

9.8CVSS7.3AI score0.57853EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2021/10/13 8:25 a.m.•70 views

CVE-2021-20321

A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options...

5.5CVSS0.4AI score0.00213EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/22 7:57 p.m.•70 views

CVE-2021-3814

A flaw was found in 3scale's API docs, where it does not validate the access token. In the case of an invalid token, it uses session auth instead. This issue possibly bypasses access controls and permits unauthorized information disclosure...

7.5CVSS2.5AI score0.01113EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/06 6:4 p.m.•70 views

CVE-2021-39258

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.2AI score0.00421EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/11 4:20 a.m.•70 views

CVE-2021-29988

Firefox incorrectly treated an inline list-item element as a block element, resulting in an out of bounds read or memory corruption, and a potentially exploitable crash. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and Firefox 91...

8.8CVSS3AI score0.01386EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/08/09 8:19 p.m.•70 views

CVE-2021-38185

A flaw was found in cpio. An integer overflow that triggers an out-of-bounds heap write can allow an attacker to execute arbitrary code via a crafted pattern file. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS6.9AI score0.0415EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/23 11:49 a.m.•70 views

CVE-2021-35043

A flaw was found in AnitSamy, where it allows a Cross-site Scripting attack XSS via HTML attributes when using the HTML output serializer XHTML is not affected. This issue was demonstrated by a javascript: URL with : as the replacement for the : character. The highest threat from this vulnerabili...

8.8CVSS1.3AI score0.01513EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/16 9:25 p.m.•70 views

CVE-2021-3652

A flaw was found in 389-ds-base. If an asterisk is imported as password hashes, either accidentally or maliciously, then instead of being inactive, any password will successfully match during authentication. This flaw allows an attacker to successfully authenticate as a user whose password was...

6.5CVSS3.5AI score0.01428EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/07/06 5:15 p.m.•70 views

CVE-2021-36087

The CIL compiler in SELinux 3.2 has a heap-based buffer over-read in ebitmapmatchany called indirectly from cilcheckneverallow. This occurs because there is sometimes a lack of checks for invalid statements in an optional block...

3.3CVSS3.2AI score0.00453EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/24 7:57 a.m.•70 views

CVE-2021-23159

A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsxreadwbuf in formatsi.c file. The vulnerability is exploitable with a crafted file, that could cause an application to crash...

5.5CVSS2.9AI score0.00457EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/04 6:42 p.m.•70 views

CVE-2020-17541

A stack-based buffer overflow flaw was found in libjpeg-turbo library in the tranform component. An attacker may use this flaw to input a malicious image file to an application utilizing this library, leading to arbitrary code execution. The highest threat from this vulnerability is to data...

8.8CVSS2.5AI score0.02728EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/02 5:45 p.m.•70 views

CVE-2021-33571

A flaw was found in django. Leading zeros in octal literals aren't prohibited in IP addresses. If you used such values you could suffer from indeterminate SSRF, RFI, and LFI attacks. The highest threat from this vulnerability is to data integrity. Mitigation Mitigation for this issue is either no...

7.5CVSS0.9AI score0.03058EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/11/01 9:54 p.m.•70 views

CVE-2019-11477

An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment SACK segments. While processing SACK segments, the Linux kernel's socket buffer SKB data structure becomes fragmented. Each fragment is about TCP maximum segment size MSS...

7.8CVSS1.1AI score0.98745EPSS
Exploits4References4
RedhatCVE
RedhatCVE
•added 2020/04/09 10:31 a.m.•70 views

CVE-2019-0221

The SSI printenv command in Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39 and 7.0.0 to 7.0.93 echoes user provided data without escaping and is, therefore, vulnerable to XSS. SSI is disabled by default. The printenv command is intended for debugging and is unlikely to be present in a...

6.1CVSS2AI score0.45571EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2020/04/08 9:22 p.m.•70 views

CVE-2012-6708

jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '' character anywhere in the string, giving...

6.8CVSS2.6AI score0.08632EPSS
Exploits6References2
RedhatCVE
RedhatCVE
•added 2020/04/02 8:10 a.m.•70 views

CVE-2018-12699

finishstab in stabs.c in GNU Binutils 2.30 allows attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact, as demonstrated by an out-of-bounds write of 8 bytes. This can occur during execution of objdump...

9.8CVSS7.8AI score0.04505EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2019/01/14 2:49 a.m.•70 views

CVE-2018-20685

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. Mitigation This issue only affects the users of scp binary which...

5.3CVSS3.4AI score0.03681EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2024/11/12 10:34 p.m.•69 views

CVE-2024-47535

A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes...

5.5CVSS5.1AI score0.00408EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2024/05/06 5:25 p.m.•69 views

CVE-2024-4436

The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2022-41723. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Hat Enterprise Linux versions, meaning ...

7.5CVSS7.7AI score0.04561EPSS
Exploits0References3
Total number of security vulnerabilities5000