Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
added 2021/02/18 3:38 p.m.69 views

CVE-2021-27219

An integer wraparound was discovered in glib due to passing a 64 bit sized value to function gmemdup which accepts a 32 bits number as argument. An attacker may abuse this flaw when an application linked against the glib library uses gbytesnew function or possibly other functions that use gmemdup...

9.8CVSS7.8AI score0.02993EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/07/06 2:51 p.m.69 views

CVE-2020-12062

The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a malicious unprivileged user on the remote server to overwrite arbitrary files in the client's download directory by creating a crafted subdirectory anywhere on the...

5CVSS7.9AI score0.02267EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/05/05 2:39 p.m.69 views

CVE-2020-12464

A use-after-free flaw was found in usbsgcancel in drivers/usb/core/message.c in the USB core subsystem. This flaw allows a local attacker with a special user or root privileges to crash the system due to a race problem in the scatter-gather cancellation and transfer completion in usbsgwait. This...

7.2CVSS6.7AI score0.00802EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/04/09 10:43 a.m.69 views

CVE-2017-14491

A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash or, potentially, execute arbitrary code...

9.8CVSS4.9AI score0.93307EPSS
Exploits32References2
RedhatCVE
RedhatCVE
added 2020/03/29 1:58 a.m.69 views

CVE-2017-18342

In PyYAML before 5.1, the yaml.load API could execute arbitrary code if used with untrusted data. The load function has been deprecated in version 5.1 and the 'UnsafeLoader' has been introduced for backward compatibility with the function...

9.8CVSS9.5AI score0.06031EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/10/24 1:50 p.m.69 views

CVE-2019-2389

Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the MongoDB process via SysV init. This issue affects MongoDB Server v4.0 versions prior to 4.0.11;...

5.3CVSS4.8AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/10/09 4:30 p.m.69 views

CVE-2017-13080

A new exploitation technique called key reinstallation attacks KRACK affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used group key GTK during a group k...

8.1CVSS1.5AI score0.02285EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/09/07 1:52 a.m.69 views

CVE-2019-15221

A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system. Mitigation To mitigate this issue, prevent module snd-usb-line6 from being loaded...

4.9CVSS3.1AI score0.00712EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2019/07/29 4:5 p.m.69 views

CVE-2017-12652

libpng before 1.6.32 does not properly check the length of chunks against the user limit...

9.8CVSS1.8AI score0.04113EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2018/12/13 11:13 a.m.69 views

CVE-2018-19965

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service host OS crash because GP0 can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 aka Meltdown mitigation...

5.9CVSS4.3AI score0.84172EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2024/06/19 5:9 p.m.68 views

CVE-2022-23829

A flaw was found in AMD SPI. The protection features may allow a malicious attacker with Ring0 kernel mode access to bypass the native System Management Mode SMM ROM protections. Mitigation Platform BIOS changes are needed to enable AMD ROM Armor. Please contact OEM supplier for the BIOS update...

8.2CVSS6.6AI score0.00196EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/04/25 6:7 p.m.68 views

CVE-2024-33602

A flaw was found in the glibc netgroup cache. The buffer-resizing code in addgetnetgrentX assumes that all string pointers point into the supplied buffer. This can potentially lead to memory corruption and cause a crash. Mitigation Mitigation for this issue is either not available or the currentl...

4CVSS8.2AI score0.00403EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2024/04/09 6:33 p.m.68 views

CVE-2024-24576

A command injection flaw was found in Rust, exclusive to Windows environments. When invoking batch files on Windows using the Command API, Rust explicitly uses cmd.exe which has complicated parsing rules for arguments. If an attacker can control part of the command arguments of the batch file, th...

10CVSS7.9AI score0.20342EPSS
Exploits10References5
RedhatCVE
RedhatCVE
added 2024/02/01 2:33 p.m.68 views

CVE-2024-23652

A vulnerability was found in the Moby Builder Toolkit, which arose from BuildKit's attempts to clean up temporarily added directories after use. A malicious BuildKit frontend or Dockerfile using RUN --mount could deceive the feature responsible for removing empty files created for the mount point...

7.8CVSS9.3AI score0.02038EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2023/12/25 10:0 p.m.68 views

CVE-2023-51764

A flaw was found in some SMTP server configurations in Postfix. This flaw allows a remote attacker to break out email message data to "smuggle" SMTP commands and send spoofed emails that pass SPF checks. Out of the box, Postfix targets to accommodate older clients with faulty SMTP implementations...

5.3CVSS5.2AI score0.02598EPSS
Exploits4References5
RedhatCVE
RedhatCVE
added 2023/12/07 12:35 p.m.68 views

CVE-2023-39326

A flaw was found in the Golang net/http/internal package. This issue may allow a malicious user to send an HTTP request and cause the receiver to read more bytes from network than are in the body up to 1GiB, causing the receiver to fail reading the response, possibly leading to a Denial of Servic...

5.3CVSS7AI score0.01208EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/11/28 1:28 p.m.68 views

CVE-2023-34053

In Spring Framework versions 6.0.0 - 6.0.13, it is possible for a user to provide specially crafted HTTP requests that may cause a denial-of-service DoS condition. Specifically, an application is vulnerable when all of the following are true: the application uses Spring MVC or Spring WebFlux...

7.5CVSS7.3AI score0.0115EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/11/15 2:13 p.m.68 views

CVE-2023-36558

A security feature bypass vulnerability was found in Blazor forms in ASP.NET in the .NET package. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability t...

5.5CVSS7.2AI score0.01085EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/10/02 10:24 a.m.68 views

CVE-2023-43642

A flaw was found in SnappyInputStream in snappy-java, a data compression library in Java. This issue occurs when decompressing data with a too-large chunk size due to a missing upper bound check on chunk length. An unrecoverable fatal error can occur, resulting in a Denial of Service DoS...

7.5CVSS7.1AI score0.0104EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/07/25 5:19 p.m.68 views

CVE-2023-20593

A flaw was found in hw, in “Zen 2” CPUs. This issue may allow an attacker to access sensitive information under specific microarchitectural circumstances. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criter...

6.5CVSS6.8AI score0.05794EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2023/07/05 3:18 p.m.68 views

CVE-2023-30584

A vulnerability has been discovered in Node.js version 20, specifically within the experimental permission model. This flaw relates to improper handling of path traversal bypass when verifying file permissions. This vulnerability affects all users using the experimental permission model in Node.j...

7.5CVSS7.1AI score0.00379EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/05/10 6:20 a.m.68 views

CVE-2023-31038

A vulnerability was found in the Log4cxx library. This issue causes a SQL injection in Log4cxx when using the ODBC appender to send log messages to a database. No fields sent to the database were properly escaped for SQL injection...

8.8CVSS7.4AI score0.01597EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2023/04/05 1:13 p.m.68 views

CVE-2023-28841

A flaw was found in Moby due to missing encrypted sensitive data within the overlay network driver. This issue could allow a remote attacker to obtain sensitive information by sending a specially crafted request and use this information to launch further attacks against the affected system...

6.8CVSS6.3AI score0.00696EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2023/03/30 10:13 a.m.68 views

CVE-2023-1436

A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...

7.5CVSS7.1AI score0.01009EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/03/01 1:59 p.m.68 views

CVE-2023-1118

A use-after-free flaw was found in the Linux kernel's integrated infrared receiver/transceiver driver. This issue occurs when a user detaches a rc device. This could allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation To mitigate this issue,...

7.8CVSS7.1AI score0.00286EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/01/16 1:5 p.m.68 views

CVE-2022-41720

A flaw was found in OS, net/http golang library. In Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted in a given directory. These functions permit access to Windows device files under that root. Fo...

7.5CVSS2.3AI score0.0119EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2022/12/16 6:5 p.m.68 views

CVE-2022-38023

A flaw was found in samba. The Netlogon RPC implementations may use the rc4-hmac encryption algorithm, which is considered weak and should be avoided even if the client supports more modern encryption types. This issue could allow an attacker who knows the plain text content communicated between...

8.1CVSS8AI score0.02559EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/12/01 3:56 p.m.68 views

CVE-2022-1471

A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution RCE...

9.8CVSS4.9AI score0.99615EPSS
Exploits7References4
RedhatCVE
RedhatCVE
added 2022/11/15 12:26 p.m.68 views

CVE-2022-21625

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.4CVSS4.5AI score0.01058EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/10/26 2:53 p.m.68 views

CVE-2022-42916

A vulnerability was found in curl. The issue occurs because curl's HSTS check can be bypassed to trick it to keep using HTTP. Using its HSTS support, it can instruct curl to use HTTPS directly instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This mechanism...

7.5CVSS8.4AI score0.01644EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/08/19 5:14 a.m.69 views

CVE-2022-34172

In Jenkins 2.340 through 2.355 both inclusive symbol-based icons unescape previously escaped values of 'tooltip' parameters, resulting in a cross-site scripting XSS vulnerability...

6.1CVSS2.5AI score0.01351EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/08/18 9:8 a.m.68 views

CVE-2022-2873

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system. Mitigation To mitigate this issue,...

6.2CVSS1.5AI score0.00301EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/07/27 3:55 p.m.68 views

CVE-2022-32746

A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl...

5.4CVSS3.2AI score0.01064EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/01 10:52 a.m.68 views

CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS4.3AI score0.00207EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/30 5:52 p.m.68 views

CVE-2022-1898

A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a use-after-free vulnerability in the findpatterninpath function. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts with...

7.8CVSS6.2AI score0.01406EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/05/18 11:1 p.m.68 views

CVE-2022-24905

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. A vulnerability was found in Argo CD prior to versions 2.3.4, 2.2.9, and 2.1.15 that allows an attacker to spoof error messages on the login screen when single sign on SSO is enabled. In order to exploit this vulnerability,...

4.3CVSS1AI score0.0119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/09 6:44 a.m.68 views

CVE-2022-1619

A flaw was found in vim, which is vulnerable to a heap-buffer-overflow in cmdlineerasechars of the exgetln.c function. This flaw allows a specially crafted file to crash software, modify memory or execute code when opened in vim...

7.8CVSS4.1AI score0.02481EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/04/25 11:52 a.m.68 views

CVE-2022-29582

A use-after-free flaw was found in the Linux kernel’s iouring interface subsystem in the way a user triggers a race condition between timeout flush and removal. This flaw allows a local user to crash or escalate their privileges on the system...

7CVSS4.2AI score0.00773EPSS
Exploits3References4
RedhatCVE
RedhatCVE
added 2022/04/14 10:38 p.m.68 views

CVE-2022-27446

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/itemcmpfunc.h, impacting availability...

7.5CVSS3.9AI score0.01579EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/04/07 2:19 p.m.68 views

CVE-2022-1154

A heap use-after-free vulnerability was found in Vim's utfptr2char function of the src/mbyte.c file. This flaw occurs because vim is using a buffer line after it has been freed in the old regexp engine. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering...

7.8CVSS7.8AI score0.01462EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/03/31 8:48 p.m.68 views

CVE-2022-24050

MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL...

7.8CVSS3.1AI score0.00603EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/03/16 12:16 p.m.68 views

CVE-2022-27191

A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability...

7.5CVSS8.8AI score0.03931EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/03/14 11:58 a.m.68 views

CVE-2022-0860

Improper Authorization in GitHub repository cobbler/cobbler prior to 3.3.2...

9.1CVSS2.8AI score0.02256EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2022/03/14 2:15 a.m.68 views

CVE-2022-23913

In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability DoS through uncontrolled resource consumption of memory...

7.5CVSS3.7AI score0.02718EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/03/09 12:41 p.m.68 views

CVE-2022-26386

The Mozilla Foundation Security Advisory describes this flaw as: Previously Thunderbird for macOS and Linux would download temporary files to a user-specific directory in /tmp, but this behavior was changed to download them to /tmp where they could be affected by other local users. This behavior...

6.5CVSS3.3AI score0.0068EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2022/03/08 1:43 p.m.68 views

CVE-2022-26486

An unexpected message in the WebGPU IPC framework could lead to an exploitable sandbox escape and a use-after-free issue. An attacker with enough privileges could exploit this flaw leading to a complete system compromise...

9.6CVSS2.3AI score0.02349EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/02/28 3:19 p.m.68 views

CVE-2022-0552

A flaw was found in the original fix for the netty-codec-http CVE-2021-21409, where the OpenShift Logging openshift-logging/elasticsearch6-rhel8 container was incomplete. The vulnerable netty-codec-http maven package was not removed from the image content...

5.9CVSS6.7AI score0.04935EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/02/22 4:46 a.m.68 views

CVE-2021-44570

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3200 Reason: This candidate is a duplicate of CVE-2021-3200. Notes: All CVE users should reference CVE-2021-3200 instead of this candidate. Al...

4.3CVSS6.7AI score0.01313EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/02/11 1:49 p.m.68 views

CVE-2022-23772

A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...

7.8CVSS4.4AI score0.0283EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/02/01 8:47 a.m.68 views

CVE-2021-4218

A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots...

5.5CVSS5AI score0.00294EPSS
Exploits1References3
Total number of security vulnerabilities5000