Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
added 2023/04/19 7:30 a.m.71 views

CVE-2023-2176

A vulnerability was found in comparenetdevandip in drivers/infiniband/core/cma.c in RDMA in the Linux kernel. An improper cleanup results in an out-of-boundary read. This flaw allows a local user to crash or escalate privileges on the system. Mitigation Mitigation for this issue is either not...

7.8CVSS7.6AI score0.0024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/02/09 1:26 p.m.71 views

CVE-2022-45142

The fix for CVE-2022-3437 included changing memcmp to be constant time and a workaround for a compiler bug by adding "!= 0" comparisons to the result of memcmp. When these patches were backported to the heimdal-7.7.1 and heimdal-7.8.0 branches and possibly other branches a logic inversion sneaked...

7.5CVSS7AI score0.0369EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/01/18 7:5 p.m.71 views

CVE-2022-36760

A flaw was found in the modproxyajp module of httpd. The connection is not closed when there is an invalid Transfer-Encoding header, allowing an attacker to smuggle requests to the AJP server, where it forwards requests...

6.5CVSS8.3AI score0.01879EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/01/04 6:5 a.m.71 views

CVE-2009-1142

A vulnerability was found in open-vm-tools. This flaw allows local users to gain privileges via a symlink attack on /tmp files if the vmware-user-suid-wrapper is the setuid root and the ChmodChownDirectory function is enabled...

6.7CVSS6AI score0.00265EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/24 3:33 p.m.71 views

CVE-2022-1364

No description is available for this CVE...

1.3AI score0.1372EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2022/04/11 5:32 a.m.71 views

CVE-2022-22628

A use-after-free issue was found in WebKitGTK and WPE WebKit. This flaw allows a remote attacker to process maliciously crafted web content, leading to arbitrary code execution...

8.8CVSS4.5AI score0.01065EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/02/21 10:46 a.m.71 views

CVE-2022-22620

A use-after-free vulnerability was found in WebKitGTK. The vulnerability occurs when processing HTML content in WebKit. This flaw allows a remote attacker to trick the victim into opening a specially crafted web page, triggering a use-after-free error and leading to the execution of arbitrary cod...

8.8CVSS6.2AI score0.16342EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/01/24 5:32 p.m.71 views

CVE-2022-22827

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...

8.8CVSS2.1AI score0.02778EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/01/12 11:23 p.m.71 views

CVE-2022-22747

The Mozilla Foundation Security Advisory describes this flaw as: After accepting an untrusted certificate, handling an empty pkcs7 sequence as part of the certificate data could have lead to a crash. This crash is believed to be unexploitable...

6.5CVSS1.4AI score0.0063EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2021/12/17 8:5 p.m.71 views

CVE-2021-4044

A flaw was found in the way OpenSSL verified certificates via the X509verifycert function. An internal error was not correctly validated causing application crashes or invalid application behavior...

7.5CVSS2.6AI score0.50099EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/11/04 4:39 p.m.71 views

CVE-2021-43267

A flaw was discovered in the cryptographic receive code in the Linux kernel's implementation of transparent interprocess communication. An attacker, with the ability to send TIPC messages to the target, can corrupt memory and escalate privileges on the target system. Mitigation The TIPC module wi...

9.8CVSS7.3AI score0.57853EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2021/10/15 4:41 p.m.71 views

CVE-2021-34866

A vulnerability was found in Linux Kernel, where a type confusion problem in checkmapfunccompatibility may lead to free arbitrary kernel memory. Mitigation The default Red Hat Enterprise Linux kernel prevents unprivileged users from being able to use eBPF by the kernel.unprivilegedbpfdisabled...

8.8CVSS2.2AI score0.00972EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2021/10/13 8:25 a.m.71 views

CVE-2021-20321

A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options...

5.5CVSS0.4AI score0.00213EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/09/06 6:4 p.m.71 views

CVE-2021-39260

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.2AI score0.00418EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/22 1:20 p.m.71 views

CVE-2018-20060

urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in cleartext...

9.8CVSS2.3AI score0.04488EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/08/09 8:19 p.m.71 views

CVE-2021-38185

A flaw was found in cpio. An integer overflow that triggers an out-of-bounds heap write can allow an attacker to execute arbitrary code via a crafted pattern file. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS6.9AI score0.0415EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/08/05 11:20 a.m.71 views

CVE-2021-32803

The npm package "tar" aka node-tar has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted...

8.2CVSS3.3AI score0.07795EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/07/20 8:51 a.m.71 views

CVE-2021-32760

A flaw was found in containerd where pulling and extracting a specially-crafted container image can result in Unix file permission changes for existing files in the host’s filesystem. Changes to file permissions can deny access to the expected owner of the file, widen access to others, or set...

6.8CVSS6.4AI score0.01608EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2021/07/16 9:25 p.m.71 views

CVE-2021-3652

A flaw was found in 389-ds-base. If an asterisk is imported as password hashes, either accidentally or maliciously, then instead of being inactive, any password will successfully match during authentication. This flaw allows an attacker to successfully authenticate as a user whose password was...

6.5CVSS3.5AI score0.01428EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/07/14 6:22 p.m.71 views

CVE-2021-20302

A flaw was found in OpenEXR's TiledInputFile functionality. This flaw allows an attacker who can submit a crafted single-part non-image to be processed by OpenEXR, to trigger a floating-point exception error. The highest threat from this vulnerability is to system availability...

7.1CVSS2AI score0.00934EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/06/22 4:29 p.m.71 views

CVE-2021-29060

A Regular Expression Denial of Service ReDOS vulnerability was found in Color-String, which occurs when the application is provided and checks a crafted invalid HWB string. The highest threat from this vulnerability is to system availability...

5.3CVSS3.5AI score0.03134EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/06/21 6:26 p.m.71 views

CVE-2021-33624

A flaw was found in the Linux kernel's BPF subsystem, where protection against speculative execution attacks Spectre mitigation can be bypassed. The highest threat from this vulnerability is to confidentiality. Mitigation The default Red Hat Enterprise Linux kernel setting prevents unprivileged...

4.7CVSS2.5AI score0.00922EPSS
Exploits3References5
RedhatCVE
RedhatCVE
added 2021/06/02 5:45 p.m.71 views

CVE-2021-33571

A flaw was found in django. Leading zeros in octal literals aren't prohibited in IP addresses. If you used such values you could suffer from indeterminate SSRF, RFI, and LFI attacks. The highest threat from this vulnerability is to data integrity. Mitigation Mitigation for this issue is either no...

7.5CVSS0.9AI score0.03058EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/09/09 4:51 p.m.71 views

CVE-2020-1968

A flaw was found in openssl in versions 1.0.2 to 1.0.2w. A Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute the pre-master secret in connections which have used a Diffie-Hellman DH based ciphersuite. In such a case this would result in th...

5.9CVSS4.9AI score0.04803EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/06/18 11:55 a.m.71 views

CVE-2019-20838

libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. Mitigation Do not use more than one fixed quantifier with \R or \X with UTF disabled in PCRE or PCRE2, as these are the...

5CVSS8.7AI score0.0277EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/04/08 9:22 p.m.71 views

CVE-2012-6708

jQuery before 1.9.0 is vulnerable to Cross-site Scripting XSS attacks. The jQuerystrInput function does not differentiate selectors from HTML in a reliable fashion. In vulnerable versions, jQuery determined whether the input was HTML by looking for the '' character anywhere in the string, giving...

6.8CVSS2.6AI score0.08632EPSS
Exploits6References2
RedhatCVE
RedhatCVE
added 2019/10/07 6:36 a.m.71 views

CVE-2019-16370

The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related issue to CVE-2005-4900...

5.9CVSS3.1AI score0.01025EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2017/03/08 11:53 a.m.71 views

CVE-2017-5638

A flaw was reported in Apache Struts 2 that could allow an attacker to perform remote code execution with a malicious Content-Type value...

10CVSS4.4AI score0.99999EPSS
Exploits44References2
RedhatCVE
RedhatCVE
added 2024/11/12 10:34 p.m.70 views

CVE-2024-47535

A flaw was found in Netty. An unsafe reading of the environment file could potentially cause a denial of service. When loaded on a Windows application, Netty attempts to load a file that does not exist. If an attacker creates a large file, the Netty application crashes...

5.5CVSS5.1AI score0.00408EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2024/11/05 11:59 a.m.70 views

CVE-2023-52920

In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction jump history to record instructions that performed register spill/fill to/from stack, regardless if this was done through read-only r10...

5.5CVSS7.3AI score0.00244EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/05/14 6:54 p.m.70 views

CVE-2024-4367

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as follows: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context...

7.5CVSS6.3AI score0.72648EPSS
Exploits15References5
RedhatCVE
RedhatCVE
added 2024/05/03 6:22 a.m.70 views

CVE-2024-32962

A flaw was found in xml-crypto, where the default configuration lacks authorization checks for signers, only checking the signature's validity. This flaw allows malicious actors to pass a manipulated XML payload to instances of xml-crypto. By re-signing an XML document with a malicious private ke...

10CVSS9.2AI score0.00833EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2024/04/03 7:27 p.m.70 views

CVE-2024-27316

A vulnerability was found in how Apache httpd implements the HTTP/2 protocol. There are insufficient limitations placed on the amount of CONTINUATION frames that can be sent within a single stream. This issue could allow an unauthenticated remote attacker to send packets to vulnerable servers,...

7.5CVSS7.2AI score0.91327EPSS
Exploits2References6
RedhatCVE
RedhatCVE
added 2024/03/28 11:55 a.m.70 views

CVE-2023-52628

An out-of-bounds write flaw was found in the Linux kernel’s Netfilter functionality. This flaw allows a local user to crash or potentially escalate their privileges on the system. Mitigation In order to trigger the issue, it requires the ability to create user/net namespaces. On non-containerized...

7CVSS7.1AI score0.00675EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/02/14 9:32 p.m.70 views

CVE-2024-25744

A flaw was found in the Linux kernel. A VMM can inject external interrupts on any arbitrary vector at any time, which may allow the guest OS to be manipulated from the VMM side. Mitigation This vulnerability can be mitigated by disabling 32-bit emulation by default for TDX and SEV. The user can...

5.6CVSS7.3AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/09/21 3:54 p.m.70 views

CVE-2022-48565

A flaw was found in Python caused by improper handling of XML external entity XXE declarations by the plistlib module. By using a specially crafted XML content, an attacker could obtain sensitive information by disclosing files specified by parsing URI, and may cause denial of service by resource...

7.8CVSS8.8AI score0.04268EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2023/08/23 8:15 p.m.70 views

CVE-2022-48065

A memory leak vulnerability was found in GNU Binutils, particularly in the function findabstractinstance in dwarf2.c. This flaw could be exploited by an attacker who provides a specially crafted input, potentially leading to a denial of service condition due to the continuous consumption of memor...

5.5CVSS5.2AI score0.00654EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2023/08/11 7:48 p.m.70 views

CVE-2023-33008

A flaw was found in Apache Johnzon. This issue could allow an attacker to craft a specific JSON input that Johnzon will deserialize into a BigDecimal, which Johnzon may use to start converting large numbers, resulting in a denial of service...

5.3CVSS6.6AI score0.01494EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/05/18 7:16 p.m.70 views

CVE-2023-32314

A flaw was found in the vm2 sandbox. When a host object is created based on the specification of Proxy, an attacker can bypass the sandbox protections. This may allow an attacker to run remote code execution on the host running the sandbox. This vulnerability impacts the confidentiality, integrit...

9.8CVSS7.7AI score0.05642EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/04/05 11:43 a.m.70 views

CVE-2023-0620

A flaw was found in HashiCorp Vault and Vault Enterprise, which are vulnerable to SQL injection. This flaw allows a local authenticated attacker to send specially-crafted SQL statements to the Microsoft SQL MSSQL Database Storage Backend, which could allow the attacker to view, add, modify, or...

6.7CVSS6.6AI score0.00378EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/03/16 12:43 p.m.70 views

CVE-2023-28466

A use-after-free flaw was found in the dotlsgetsockopt function in net/tls/tlsmain.c in the Transport Layer Security TLS in the Network subcompact in the Linux kernel. This flaw allows an attacker to cause a NULL pointer dereference problem due to a race condition. Mitigation This flaw can be...

7CVSS6.6AI score0.0027EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/03/15 5:44 a.m.70 views

CVE-2022-41724

A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition...

7.5CVSS8.2AI score0.01111EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2022/11/10 7:25 p.m.70 views

CVE-2022-37026

A Client Authentication Bypass was found in Erlang/OTP. This issue occurs in certain client-certification situations for SSL, TLS, and DTLS...

9.4CVSS3.3AI score0.01167EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2022/07/13 5:14 a.m.70 views

CVE-2022-23825

A flaw was found in hw. Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type, potentially leading to information disclosure...

6.5CVSS1.6AI score0.00772EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/07 2:29 a.m.70 views

CVE-2022-29162

A flaw was found in runc, where runc exec --cap executed processes with non-empty inheritable Linux process capabilities. This issue creates an atypical Linux environment and enables programs with inheritable file capabilities to elevate those capabilities to the permitted set during execve2...

7.8CVSS6.3AI score0.00386EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/04/25 12:22 p.m.70 views

CVE-2022-29599

A flaw was found in the maven-shared-utils package. This issue allows a Command Injection due to improper escaping, allowing a shell injection attack...

7.5CVSS9.4AI score0.04031EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/04/20 8:47 a.m.70 views

CVE-2022-21496

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JNDI. Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5, 21.3.1 and 22.0.0.2. Easily exploitable...

5.3CVSS2.2AI score0.02805EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/04/13 6:28 a.m.70 views

CVE-2021-31805

The fix issued for CVE-2020-17530 was incomplete. So from Apache Struts 2.0.0 to 2.5.29, still some of the tag’s attributes could perform a double evaluation if a developer applied forced OGNL evaluation by using the %... syntax. Using forced OGNL evaluation on untrusted user input can lead to a...

9.8CVSS1.8AI score0.95922EPSS
Exploits16References3
RedhatCVE
RedhatCVE
added 2022/03/31 8:47 p.m.70 views

CVE-2022-1055

A use-after-free vulnerability was found in the tcnewtfilter function in net/sched/clsapi.c in the Linux kernel. The availability of local, unprivileged user namespaces allows privilege escalation. Mitigation On non-containerized deployments of Red Hat Enterprise Linux 8, you can disable user...

8.6CVSS1.9AI score0.005EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2021/12/14 4:27 p.m.70 views

CVE-2021-4112

A flaw was found in ansible-tower where the default installation is vulnerable to job isolation escape. This flaw allows an attacker to elevate the privilege from a low privileged user to an AWX user from outside the isolated environment. Mitigation Red Hat has investigated whether possible...

8.8CVSS3.5AI score0.00232EPSS
Exploits0References3
Total number of security vulnerabilities5000