Lucene search
K
RedhatcveMost viewed

206341 matches found

RedhatCVE
RedhatCVE
•added 2020/05/05 2:39 p.m.•68 views

CVE-2020-12464

A use-after-free flaw was found in usbsgcancel in drivers/usb/core/message.c in the USB core subsystem. This flaw allows a local attacker with a special user or root privileges to crash the system due to a race problem in the scatter-gather cancellation and transfer completion in usbsgwait. This...

7.2CVSS6.7AI score0.00802EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/04/05 4:55 a.m.•68 views

CVE-2016-0736

It was discovered that the modsessioncrypto module of httpd did not use any mechanisms to verify integrity of the encrypted session data stored in the user's browser. A remote attacker could use this flaw to decrypt and modify session data using a padding oracle attack...

7.5CVSS1.8AI score0.49024EPSS
Exploits4References2
RedhatCVE
RedhatCVE
•added 2019/10/24 1:50 p.m.•68 views

CVE-2019-2389

Incorrect scoping of kill operations in MongoDB Server's packaged SysV init scripts allow users with write access to the PID file to insert arbitrary PIDs to be killed when the root user stops the MongoDB process via SysV init. This issue affects MongoDB Server v4.0 versions prior to 4.0.11;...

5.3CVSS4.8AI score0.00305EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/02 8:20 p.m.•68 views

CVE-2019-3834

It was found that the fix for CVE-2014-0114 had been reverted in JBoss Operations Network 3 JON. This flaw allows attackers to manipulate ClassLoader properties on a vulnerable server. Exploits that have been published rely on ClassLoader properties that are exposed such as those in JON 3...

7.5CVSS8.5AI score0.95821EPSS
Exploits4References3
RedhatCVE
RedhatCVE
•added 2019/09/07 1:52 a.m.•68 views

CVE-2019-15221

A NULL pointer dereference flaw was found in the way the LINE6 drivers in the Linux kernel allocated buffers for USB packets. This flaw allows an attacker with physical access to the system to crash the system. Mitigation To mitigate this issue, prevent module snd-usb-line6 from being loaded...

4.9CVSS3.1AI score0.00712EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/07/29 4:5 p.m.•68 views

CVE-2017-12652

libpng before 1.6.32 does not properly check the length of chunks against the user limit...

9.8CVSS1.8AI score0.04113EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2018/12/13 11:13 a.m.•68 views

CVE-2018-19965

An issue was discovered in Xen through 4.11.x allowing 64-bit PV guest OS users to cause a denial of service host OS crash because GP0 can occur after a non-canonical address is passed to the TLB flushing code. NOTE: this issue exists because of an incorrect CVE-2017-5754 aka Meltdown mitigation...

5.9CVSS4.3AI score0.84172EPSS
Exploits3References2
RedhatCVE
RedhatCVE
•added 2016/05/24 5:18 p.m.•68 views

CVE-2016-3088

The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request. Mitigation Users are advised to use other FTP and HTTP based file servers for transferring blob messages. Fileserver...

9.8CVSS2.8AI score0.98518EPSS
Exploits19References2
RedhatCVE
RedhatCVE
•added 2025/11/07 12:19 a.m.•67 views

CVE-2025-55278

Improper authentication in the API authentication middleware of HCL DevOps Loop allows authentication tokens to be accepted without proper validation of their expiration and cryptographic signature. As a result, an attacker could potentially use expired or tampered tokens to gain unauthorized...

8.1CVSS7.1AI score0.00188EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2024/06/19 5:9 p.m.•67 views

CVE-2022-23829

A flaw was found in AMD SPI. The protection features may allow a malicious attacker with Ring0 kernel mode access to bypass the native System Management Mode SMM ROM protections. Mitigation Platform BIOS changes are needed to enable AMD ROM Armor. Please contact OEM supplier for the BIOS update...

8.2CVSS6.6AI score0.00196EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/05/15 6:28 a.m.•67 views

CVE-2024-3044

A flaw was found in LibreOffice. Unchecked script execution in graphic on-click binding allows an attacker to create a document, which, without a prompt, will execute scripts built into LibreOffice when clicking a graphic. These scripts were previously deemed trusted but are now deemed untrusted...

7.3CVSS6AI score0.01008EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/04/17 1:2 p.m.•67 views

CVE-2024-2419

A flaw was found in Keycloak's redirecturi validation logic. This issue may allow a bypass of otherwise explicitly allowed hosts. A successful attack may lead to the theft of an access token, making it possible for the attacker to impersonate other users. It is very similar to CVE-2023-6291...

7.1CVSS6.7AI score0.0095EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/02/08 12:39 p.m.•67 views

CVE-2024-24806

A server-side request forgery SSRF flaw was found in the libuv package due to how the hostnameascii variable is handled in uvgetaddrinfo and uvidnatoascii. When the hostname exceeds 256 characters, it gets truncated without a terminating null byte. As a result, attackers may be able to access...

7.3CVSS7.2AI score0.02003EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/12/25 10:0 p.m.•67 views

CVE-2023-51764

A flaw was found in some SMTP server configurations in Postfix. This flaw allows a remote attacker to break out email message data to "smuggle" SMTP commands and send spoofed emails that pass SPF checks. Out of the box, Postfix targets to accommodate older clients with faulty SMTP implementations...

5.3CVSS5.2AI score0.02598EPSS
Exploits4References5
RedhatCVE
RedhatCVE
•added 2023/12/07 12:35 p.m.•67 views

CVE-2023-39326

A flaw was found in the Golang net/http/internal package. This issue may allow a malicious user to send an HTTP request and cause the receiver to read more bytes from network than are in the body up to 1GiB, causing the receiver to fail reading the response, possibly leading to a Denial of Servic...

5.3CVSS7AI score0.01208EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/09/13 5:24 a.m.•67 views

CVE-2023-4039

A vulnerability was found in GCC. The GCC's stack protection feature, enabled with the flag -fstack-protector, aims to detect buffer overflows in C/C++ function local variables that might allow an attacker to overwrite saved registers on the stack. If an attacker can modify saved register values,...

6.6AI score0.00666EPSS
Exploits1References8
RedhatCVE
RedhatCVE
•added 2023/09/07 8:40 p.m.•67 views

CVE-2023-4206

There are 3 CVEs for the use-after-free flaw found in net/sched/clsfw.c in classifiers clsfw, clsu32, and clsroute in the Linux Kernel: CVE-2023-4206, CVE-2023-4207, CVE-2023-4208. A local user could use any of these flaws to crash the system or potentially escalate their privileges on the system...

7.8CVSS7.3AI score0.00565EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/08/22 5:50 p.m.•67 views

CVE-2023-40267

An improper input validation vulnerability was found in GitPython. This flaw allows an attacker to inject a maliciously crafted remote URL into the clone command, possibly leading to remote code execution...

9.8CVSS9AI score0.00984EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/05 12:35 p.m.•67 views

CVE-2023-29499

A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service...

6.2CVSS6.1AI score0.00768EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/05/05 9:21 a.m.•67 views

CVE-2023-2319

It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to include the fix for the Webpack issue CVE-2023-28154 for PCS package, which was previously addressed in Red Hat Enterprise Linux 9.1 via erratum RHSA-2023:1591. Th...

9.1CVSS8.4AI score0.01421EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/30 10:13 a.m.•67 views

CVE-2023-1436

A flaw was found in Jettison. Infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This issue leads to a StackOverflowError exception being thrown...

7.5CVSS7.1AI score0.01009EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/03/01 1:59 p.m.•67 views

CVE-2023-1118

A use-after-free flaw was found in the Linux kernel's integrated infrared receiver/transceiver driver. This issue occurs when a user detaches a rc device. This could allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation To mitigate this issue,...

7.8CVSS7.1AI score0.00286EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/27 6:30 p.m.•67 views

CVE-2023-1077

A memory corruption flaw was found in the Linux kernel's scheduler subsystem. This could allow a local user to crash the system or potentially escalate their privileges on the system...

7CVSS7.4AI score0.00278EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/16 1:5 p.m.•67 views

CVE-2022-41720

A flaw was found in OS, net/http golang library. In Windows, restricted files can be accessed via os.DirFS and http.Dir. The os.DirFS function and http.Dir type provide access to a tree of files rooted in a given directory. These functions permit access to Windows device files under that root. Fo...

7.5CVSS2.3AI score0.0119EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/01/13 7:35 p.m.•67 views

CVE-2023-0056

An uncontrolled resource consumption vulnerability was discovered in HAProxy which could crash the service. This issue could allow an authenticated remote attacker to run a specially crafted malicious server in an OpenShift cluster. The biggest impact is to availability...

4.3CVSS7.5AI score0.01834EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/12/01 3:56 p.m.•67 views

CVE-2022-1471

A flaw was found in the SnakeYaml package. This flaw allows an attacker to benefit from remote code execution by sending malicious YAML content and this content being deserialized by the constructor. Deserialization is unsafe and leads to Remote Code Execution RCE...

9.8CVSS4.9AI score0.99615EPSS
Exploits7References4
RedhatCVE
RedhatCVE
•added 2022/11/15 12:26 p.m.•67 views

CVE-2022-21625

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.30 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.4CVSS4.5AI score0.01058EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/09/21 1:19 p.m.•67 views

CVE-2022-38177

A flaw was found in the Bind package. By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak, resulting in crashing the program...

7.5CVSS2.5AI score0.02299EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/08/18 9:8 a.m.•67 views

CVE-2022-2873

An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system. Mitigation To mitigate this issue,...

6.2CVSS1.5AI score0.00301EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/07/27 3:55 p.m.•67 views

CVE-2022-32746

A flaw was found in the Samba AD LDAP server. The AD DC database audit logging module can access LDAP message values freed by a preceding database module, resulting in a use-after-free issue. This issue is only possible when modifying certain privileged attributes, such as userAccountControl...

5.4CVSS3.2AI score0.01064EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/06/28 3:35 a.m.•67 views

CVE-2022-32207

A vulnerability was found in curl. This issue occurs because when curl saves cookies, alt-svc, and HSTS data to local files, it makes the operation atomic by finalizing the process with a rename from a temporary name to the final target file name. This flaw leads to unpreserved file permissions,...

9.8CVSS2AI score0.06823EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/06/07 5:19 p.m.•67 views

CVE-2022-28733

A flaw was found in grub2 when handling IPv4 packets. This flaw allows an attacker to craft a malicious packet, triggering an integer underflow in grub code. Consequently, the memory allocation for handling the packet data may be smaller than the size needed. This issue causes an out-of-bands wri...

8.1CVSS4.5AI score0.01284EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/06/01 10:52 a.m.•67 views

CVE-2022-31624

MariaDB Server before 10.7 is vulnerable to Denial of Service. While executing the plugin/serveraudit/serveraudit.c method logstatementex, the held lock lockbigbuffer is not released correctly, which allows local users to trigger a denial of service due to the deadlock...

5.5CVSS4.3AI score0.00207EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/05/07 2:4 p.m.•67 views

CVE-2021-3629

A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability...

5.9CVSS1.9AI score0.01175EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/14 10:38 p.m.•67 views

CVE-2022-27446

A flaw was found in the MariaDB Server. It contains a segmentation fault via the component, sql/itemcmpfunc.h, impacting availability...

7.5CVSS3.9AI score0.01579EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/31 8:48 p.m.•67 views

CVE-2022-27650

A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found in Moby Docker Engine where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS3.6AI score0.01124EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/31 8:47 p.m.•67 views

CVE-2022-1195

A use-after-free vulnerability was found in the Linux kernel in drivers/net/hamradio. This flaw allows a local attacker with a user privilege to cause a denial of service DOS when the mkiss or sixpack device is detached and reclaim resources early. Mitigation Mitigation for this issue is either n...

5.5CVSS2.3AI score0.00229EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2022/03/24 6:4 p.m.•67 views

CVE-2022-24051

MariaDB CONNECT Storage Engine Format String Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL...

7.8CVSS3.1AI score0.00615EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/22 8:10 a.m.•67 views

CVE-2022-1043

A flaw was found in the Linux kernel’s iouring implementation. This flaw allows an attacker with a local account to corrupt system memory, crash the system or escalate privileges...

8.8CVSS4.2AI score0.03718EPSS
Exploits4References5
RedhatCVE
RedhatCVE
•added 2022/03/14 4:44 p.m.•67 views

CVE-2022-0265

A vulnerability was found in hazelcast that allows an Improper Restriction of XML External Entity Reference. This issue causes an XML External Entity XXE vulnerability...

9.8CVSS2.2AI score0.02792EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2022/03/08 1:43 p.m.•67 views

CVE-2022-26486

An unexpected message in the WebGPU IPC framework could lead to an exploitable sandbox escape and a use-after-free issue. An attacker with enough privileges could exploit this flaw leading to a complete system compromise...

9.6CVSS2.3AI score0.02349EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/02/28 3:19 p.m.•67 views

CVE-2022-0552

A flaw was found in the original fix for the netty-codec-http CVE-2021-21409, where the OpenShift Logging openshift-logging/elasticsearch6-rhel8 container was incomplete. The vulnerable netty-codec-http maven package was not removed from the image content...

5.9CVSS6.7AI score0.04935EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/21 5:51 a.m.•67 views

CVE-2022-25236

A flaw was found in expat. Passing one or more namespace separator characters in the "xmlns:prefix" attribute values made expat send malformed tag names to the XML processor on top of expat. This issue causes arbitrary code execution depending on how unexpected cases are handled inside the XML...

9.8CVSS1AI score0.34174EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/17 4:52 p.m.•67 views

CVE-2022-25179

A flaw was found in Jenkins. The Pipeline: Multibranch follows symbolic links to locations outside of the checkout directory for the configured SCM when reading files using the readTrusted step. This flaw allows attackers that can configure Pipelines, to read arbitrary files on the Jenkins...

6.5CVSS3.6AI score0.01758EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/02/17 6:50 a.m.•67 views

CVE-2022-25265

A vulnerability was found in the Linux kernel when certain binary files have the exec-all attribute with gcc. This issue can cause the execution of bytes located in the non-executable regions of a file. Mitigation Mitigation for this issue is either not available or the currently available option...

7.8CVSS2.4AI score0.01054EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/02/11 1:49 p.m.•67 views

CVE-2022-23772

A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...

7.8CVSS4.4AI score0.0283EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/19 4:52 p.m.•67 views

CVE-2022-22817

A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command...

9.8CVSS5.2AI score0.03399EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/18 4:16 p.m.•67 views

CVE-2022-23305

A flaw was found in the Java logging library Apache Log4j in version 1.x. JDBCAppender in Log4j 1.x is vulnerable to SQL injection in untrusted data. This allows a remote attacker to run SQL statements in the database if the deployed application is configured to use JDBCAppender with certain...

9.8CVSS3.5AI score0.66537EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/12/22 5:20 a.m.•67 views

CVE-2021-4154

A use-after-free flaw was found in cgroup1parseparam in kernel/cgroup/cgroup-v1.c in the Linux kernel's cgroup v1 parser. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service ...

8.8CVSS2.4AI score0.01206EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2021/09/28 12:45 p.m.•67 views

CVE-2021-3762

A directory traversal vulnerability was found in the ClairCore engine of Clair. An attacker can exploit this by supplying a crafted container image which, when scanned by Clair, allows for arbitrary file write on the filesystem, potentially allowing for remote code execution. Mitigation Mitigatio...

9.8CVSS2.5AI score0.04513EPSS
Exploits1References3
Total number of security vulnerabilities5000