Lucene search
K
RedhatcveMost viewed

206519 matches found

RedhatCVE
RedhatCVE
•added 2022/06/28 3:35 a.m.•69 views

CVE-2022-32206

A vulnerability was found in curl. This issue occurs because the number of acceptable "links" in the "decompression chain" was unbounded, allowing a malicious server to insert a virtually unlimited number of compression steps. This flaw leads to a denial of service, either by mistake or by a...

6.5CVSS4.7AI score0.3197EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/30 5:52 p.m.•69 views

CVE-2022-1898

A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a use-after-free vulnerability in the findpatterninpath function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts with...

7.8CVSS6.2AI score0.01406EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/18 11:1 p.m.•69 views

CVE-2022-24905

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. A vulnerability was found in Argo CD prior to versions 2.3.4, 2.2.9, and 2.1.15 that allows an attacker to spoof error messages on the login screen when single sign on SSO is enabled. In order to exploit this vulnerability,...

4.3CVSS1AI score0.0119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/09 6:44 a.m.•69 views

CVE-2022-1619

A flaw was found in vim, which is vulnerable to a heap-buffer-overflow in cmdlineerasechars of the exgetln.c function. This flaw allows a specially crafted file to crash software, modify memory or execute code when opened in vim...

7.8CVSS4.1AI score0.02481EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/04/25 11:52 a.m.•69 views

CVE-2022-29582

A use-after-free flaw was found in the Linux kernel’s iouring interface subsystem in the way a user triggers a race condition between timeout flush and removal. This flaw allows a local user to crash or escalate their privileges on the system...

7CVSS4.2AI score0.00773EPSS
Exploits3References4
RedhatCVE
RedhatCVE
•added 2022/03/31 8:48 p.m.•69 views

CVE-2022-24050

MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL...

7.8CVSS3.1AI score0.00603EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/16 8:56 p.m.•69 views

CVE-2022-0667

An assertion check flaw was found in BIND, with a refactoration of recursive client code that introduced a "backstop lifetime timer." While BIND processes a request for a DS record that needs to be forwarded, it waits until this processing is complete or until the backstop lifetime timer has time...

7.5CVSS2.2AI score0.01285EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/16 12:16 p.m.•69 views

CVE-2022-27191

A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability...

7.5CVSS8.8AI score0.03931EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/16 10:21 a.m.•69 views

CVE-2022-27223

In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access...

8.8CVSS2AI score0.021EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/14 2:15 a.m.•69 views

CVE-2022-23913

In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability DoS through uncontrolled resource consumption of memory...

7.5CVSS3.7AI score0.02718EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/03/11 11:57 a.m.•69 views

CVE-2022-23633

A flaw was found in the Rack middleware package of RubyGems, where response bodies will not close under certain circumstances. This flaw allows an attacker to iterate requests to force ActionDispatch::Executor to not close, allowing subsequent requests to leak data from...

7.4CVSS3AI score0.02207EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/09 12:41 p.m.•69 views

CVE-2022-26386

The Mozilla Foundation Security Advisory describes this flaw as: Previously Thunderbird for macOS and Linux would download temporary files to a user-specific directory in /tmp, but this behavior was changed to download them to /tmp where they could be affected by other local users. This behavior...

6.5CVSS3.3AI score0.0068EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/03/08 1:43 p.m.•69 views

CVE-2022-26486

An unexpected message in the WebGPU IPC framework could lead to an exploitable sandbox escape and a use-after-free issue. An attacker with enough privileges could exploit this flaw leading to a complete system compromise...

9.6CVSS2.3AI score0.02349EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/02/22 4:46 a.m.•69 views

CVE-2021-44570

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3200 Reason: This candidate is a duplicate of CVE-2021-3200. Notes: All CVE users should reference CVE-2021-3200 instead of this candidate. Al...

4.3CVSS6.7AI score0.01313EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/11 11:16 a.m.•69 views

CVE-2022-21702

A Cross-site scripting XSS vulnerability was found in the way Grafana handles data sources. This flaw allows an attacker to serve HTML content through the Grafana data source or plugin proxy and trick a user to visit this HTML page using a specially crafted link and execute a Cross-site scripting...

6.8CVSS0.7AI score0.02359EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/02/10 8:19 p.m.•69 views

CVE-2021-25939

In ArangoDB, versions v3.7.0 through v3.9.0-alpha.1 have a feature which allows downloading a Foxx service from a publicly available URL. This feature does not enforce proper filtering of requests performed internally, which can be abused by a highly-privileged attacker to perform blind SSRF and...

4CVSS3.6AI score0.01129EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/01 8:47 a.m.•69 views

CVE-2021-4218

A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots...

5.5CVSS5AI score0.00294EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/24 7:58 p.m.•69 views

CVE-2022-23304

The implementations of EAP-pwd in hostapd before 2.10 and wpasupplicant before 2.10 are vulnerable to side-channel attacks as a result of cache access patterns. The highest threat from this vulnerability is to availability, confidentiality and integrity...

9.8CVSS3.9AI score0.01903EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/18 9:50 p.m.•69 views

CVE-2022-21291

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability allow...

5.3CVSS4.8AI score0.02896EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/01/12 11:32 p.m.•69 views

CVE-2021-22569

A flaw was found in protobuf-java. Google Protocol Buffer protobuf-java allows the interleaving of com.google.protobuf.UnknownFieldSet fields. By persuading a victim to open specially-crafted content, a remote attacker could cause a timeout in the ProtobufFuzzer function, resulting in a denial of...

7.5CVSS5.7AI score0.01655EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/12/14 7:8 p.m.•69 views

CVE-2021-43877

ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability...

8.8CVSS3AI score0.00716EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/08/22 1:15 p.m.•69 views

CVE-2019-16335

A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to com.zaxxer.hikari.HikariDataSource. This is a different vulnerability than CVE-2019-14540. Mitigation This vulnerability relies on com.zaxxer.hikari.HikariDataSource being present in the...

9.8CVSS0.6AI score0.10676EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/30 2:1 p.m.•69 views

CVE-2021-22930

A flaw was found in Node.js, where it is vulnerable to a use-after-free attack. This flaw allows an attacker to exploit the memory corruption, which causes a change in the process behavior. The highest threat from this vulnerability is to confidentiality and integrity...

9.8CVSS3.9AI score0.37286EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/28 1:53 p.m.•69 views

CVE-2021-1825

An input validation issue was addressed with improved input validation. This issue is fixed in iTunes 12.11.3 for Windows, iCloud for Windows 12.3, macOS Big Sur 11.3, Safari 14.1, watchOS 7.4, tvOS 14.5, iOS 14.5 and iPadOS 14.5. Processing maliciously crafted web content may lead to a cross sit...

8.1CVSS1.5AI score0.01358EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/07/27 2:25 a.m.•69 views

CVE-2021-3658

bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. If a device is powered down while discoverable, it will be discoverable when powered on again. This could lead to inadvertent exposure of the bluetooth stack to...

6.5CVSS4.1AI score0.00795EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/20 6:54 p.m.•69 views

CVE-2017-5715

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

5.6CVSS2.7AI score0.93838EPSS
Exploits13References2
RedhatCVE
RedhatCVE
•added 2021/07/14 6:22 p.m.•69 views

CVE-2021-36374

When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commonly used derived formats from ZIP archives...

5.5CVSS2.2AI score0.0262EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/14 5:52 a.m.•69 views

CVE-2021-3636

It was found in OpenShift, before version 4.8, that the generated certificate for the in-cluster Service CA, incorrectly included additional certificates. The Service CA is automatically mounted into all pods, allowing them to safely connect to trusted in-cluster services that present certificate...

4.6CVSS3.6AI score0.00284EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/14 1:25 a.m.•69 views

CVE-2021-29970

A malicious webpage could have triggered a use-after-free, memory corruption, and a potentially exploitable crash. This bug could only be triggered when accessibility was enabled.. This vulnerability affects Thunderbird 78.12, Firefox ESR 78.12, and Firefox 90...

8.8CVSS2.7AI score0.01428EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/28 6:46 p.m.•69 views

CVE-2021-3624

There is a flaw in dcraw. An attacker who is able to convince a victim to open a crafted file with dcraw could trigger an unsigned integer wraparound, leading to out-of-bounds write. The greatest impact from this flaw is to system availability, data integrity, and data confidentiality...

9.3CVSS4.3AI score0.00876EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/17 6:24 p.m.•69 views

CVE-2021-30468

A vulnerability in the JsonMapObjectReaderWriter of Apache CXF allows an attacker to submit malformed JSON to a web service, which results in the thread getting stuck in an infinite loop, consuming CPU indefinitely. This issue affects Apache CXF versions prior to 3.4.4; Apache CXF versions prior ...

7.5CVSS4.1AI score0.07024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/16 3:14 p.m.•69 views

CVE-2021-3584

A server side remote code execution vulnerability was found in Foreman project. A authenticated attacker could use Sendmail configuration options to overwrite the defaults and perform command injection. The highest threat from this vulnerability is to confidentiality, integrity and availability o...

9CVSS2.7AI score0.03885EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/14 4:53 p.m.•69 views

CVE-2021-28213

Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks...

7.5CVSS2AI score0.01106EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/11 2:14 p.m.•69 views

CVE-2021-3597

A flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability...

5.9CVSS2.2AI score0.01061EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/08 3:49 a.m.•69 views

CVE-2020-13950

A flaw was found In Apache httpd. The modproxy has a NULL pointer dereference. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.5CVSS1.8AI score0.49089EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/24 5:6 p.m.•69 views

CVE-2021-23386

Remote memory exposure vulnerability was found in nodejs dns-packet library. The buffers created with allocUnsafe are not always filled before forming the network packets and an attacker can use this vulnerability to potentially get access to internal application memory over non encrypted network...

7.7CVSS4.7AI score0.01425EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•69 views

CVE-2020-26140

A vulnerability was found in Linux kernel. Where the WiFi implementations accept plaintext frames in a protected WiFi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration. Mitigation Mitigation for this issue is either not available or the...

6.5CVSS1.7AI score0.02923EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/18 3:38 p.m.•69 views

CVE-2021-27219

An integer wraparound was discovered in glib due to passing a 64 bit sized value to function gmemdup which accepts a 32 bits number as argument. An attacker may abuse this flaw when an application linked against the glib library uses gbytesnew function or possibly other functions that use gmemdup...

9.8CVSS7.8AI score0.02993EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/07/06 2:51 p.m.•69 views

CVE-2020-12062

The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a malicious unprivileged user on the remote server to overwrite arbitrary files in the client's download directory by creating a crafted subdirectory anywhere on the...

5CVSS7.9AI score0.02267EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/05/20 11:25 p.m.•69 views

CVE-2020-9484

A deserialization flaw was discovered in Apache Tomcat's use of a FileStore. Under specific circumstances, an attacker can use a specially crafted request to trigger Remote Code Execution through deserialization of the file under their control. The highest threat from the vulnerability is to data...

4.4CVSS7.6AI score0.56636EPSS
Exploits15References8
RedhatCVE
RedhatCVE
•added 2020/05/12 2:40 p.m.•69 views

CVE-2020-12770

A vulnerability was found in sgwrite in drivers/scsi/sg.c in the SCSI generic sg driver subsystem. This flaw allows an attacker with local access and special user or root privileges to cause a denial of service if the allocated list is not cleaned with an invalid Sgfd sfp pointer at the time of...

4.6CVSS1.5AI score0.00586EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 10:43 a.m.•69 views

CVE-2017-14491

A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code...

9.8CVSS4.9AI score0.93307EPSS
Exploits32References2
RedhatCVE
RedhatCVE
•added 2020/03/29 1:58 a.m.•69 views

CVE-2017-18342

In PyYAML before 5.1, the yaml.load API could execute arbitrary code if used with untrusted data. The load function has been deprecated in version 5.1 and the 'UnsafeLoader' has been introduced for backward compatibility with the function...

9.8CVSS9.5AI score0.06031EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2019/10/24 1:50 p.m.•69 views

CVE-2019-2389

Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the MongoDB process via SysV init. This issue affects MongoDB Server v4.0 versions prior to 4.0.11;...

5.3CVSS4.8AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/09 4:30 p.m.•69 views

CVE-2017-13080

A new exploitation technique called key reinstallation attacks KRACK affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used group key GTK during a group k...

8.1CVSS1.5AI score0.02285EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/09/07 1:52 a.m.•69 views

CVE-2019-15221

A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system. Mitigation To mitigate this issue, prevent module snd-usb-line6 from being loaded...

4.9CVSS3.1AI score0.00712EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/07/29 4:5 p.m.•69 views

CVE-2017-12652

libpng before 1.6.32 does not properly check the length of chunks against the user limit...

9.8CVSS1.8AI score0.04113EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2018/12/13 11:13 a.m.•69 views

CVE-2018-19965

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service host OS crash because GP0 can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 aka Meltdown mitigation...

5.9CVSS4.3AI score0.84172EPSS
Exploits3References2
RedhatCVE
RedhatCVE
•added 2024/06/19 5:9 p.m.•68 views

CVE-2022-23829

A flaw was found in AMD SPI. The protection features may allow a malicious attacker with Ring0 kernel mode access to bypass the native System Management Mode SMM ROM protections. Mitigation Platform BIOS changes are needed to enable AMD ROM Armor. Please contact OEM supplier for the BIOS update...

8.2CVSS6.6AI score0.00196EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/01 2:33 p.m.•68 views

CVE-2024-23652

A vulnerability was found in the Moby Builder Toolkit, which arose from BuildKit's attempts to clean up temporarily added directories after use. A malicious BuildKit frontend or Dockerfile using RUN --mount could deceive the feature responsible for removing empty files created for the mount point...

7.8CVSS9.3AI score0.02038EPSS
Exploits0References7
Total number of security vulnerabilities5000