Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
added 2022/01/18 10:0 p.m.66 views

CVE-2022-21293

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS4.7AI score0.08346EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/01/17 5:36 p.m.66 views

CVE-2022-0264

A vulnerability was found in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating som...

5.5CVSS6AI score0.00255EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/10/21 7:17 p.m.66 views

CVE-2021-25742

A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster...

7.6CVSS1AI score0.01784EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/10/19 9:3 p.m.66 views

CVE-2021-35556

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS2.3AI score0.07819EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/09/24 11:10 a.m.66 views

CVE-2021-21239

A verification flaw was found in python-pysaml2, where it did not ensure that a signed SAML document was correctly signed. The default CryptoBackendXmlSec1 backend uses the xmlsec1 binary to verify the signature of signed SAML documents, but by default xmlsec1 accepts any type of key found within...

6.5CVSS1.1AI score0.0118EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2021/09/15 6:52 a.m.66 views

CVE-2021-22946

A flaw was found in curl. This flaw lies in the --ssl-reqd option or related settings in libcurl. Users specify this flag to upgrade to TLS when communicating with either IMAP, POP3 or a FTP server. An attacker controlling such servers could return a crafted response which could lead to curl clie...

7.5CVSS1.9AI score0.04224EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/08/26 8:25 a.m.66 views

CVE-2021-3739

A NULL pointer dereference flaw was found in the btrfsrmdevice function in fs/btrfs/volumes.c in the Linux Kernel, where triggering the bug requires ‘CAPSYSADMIN’. This flaw allows a local attacker to crash the system or leak kernel internal information. The highest threat from this vulnerability...

7.1CVSS0.3AI score0.00582EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/08/11 6:57 p.m.66 views

CVE-2020-21676

A stack-based buffer overflow in the genpstrxtext component in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service DOS via converting a xfig file into pstricks format...

5.5CVSS4.6AI score0.0107EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/07/15 12:51 a.m.66 views

CVE-2021-25740

A flaw was found in Kubernetes. This issue enables users to send network traffic to locations they would otherwise not have access to via a confused deputy attack...

3.5CVSS4.4AI score0.01815EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/07/12 7:46 p.m.66 views

CVE-2021-30639

A flaw was found in Apache Tomcat. This flaw allows an attacker to remotely trigger a denial of service. An error introduced as part of a change to improve error handling during non-blocking I/O meant that the error flag associated with the Request object was not reset between requests. This mean...

7.5CVSS2.4AI score0.06889EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/07/07 5:48 p.m.66 views

CVE-2021-35039

A flaw incorrect handle of boot param module.sigenforce=1 in the Linux kernel modules sign verification functionality was found in the way user boot with this param enabled and both if kernel compiled with param CONFIGMODULESIG unset, then user still can load unsigned module even param...

7.8CVSS1.6AI score0.00246EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/06/23 8:25 a.m.66 views

CVE-2020-5404

The HttpClient from Reactor Netty, versions 0.9.x prior to 0.9.5, and versions 0.8.x prior to 0.8.16, may be used incorrectly, leading to a credentials leak during a redirect to a different domain. In order for this to happen, the HttpClient must have been explicitly configured to follow redirect...

6.5CVSS1.8AI score0.00653EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/06/11 5:12 p.m.66 views

CVE-2021-28169

For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to /concat?/%2557EB-INF/web.xml can retrieve the web.xml file. This can reveal...

5.3CVSS3.6AI score0.7848EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2021/05/19 12:26 a.m.66 views

CVE-2020-26147

A flaw was found in ieee80211rxhdefragment in net/mac80211/rx.c in the Linux Kernel's WiFi implementation. This vulnerability can be abused to inject packets or exfiltrate selected fragments when another device sends fragmented frames, and the WEP, CCMP, or GCMP data-confidentiality protocol is...

5.4CVSS0.8AI score0.07604EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/05/13 5:56 a.m.66 views

CVE-2020-24587

A flaw was found in the Linux kernel's WiFi implementation. An attacker within the wireless range can abuse a logic flaw in the WiFi implementation by reassembling packets from multiple fragments under different keys, treating them as valid. This flaw allows an attacker to send a fragment under a...

3.1CVSS1.2AI score0.02592EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2021/05/13 5:56 a.m.66 views

CVE-2020-24586

A flaw was found in the Linux kernels implementation of wifi fragmentation handling. An attacker with the ability to transmit within the wireless transmission range of an access point can abuse a flaw where previous contents of wifi fragments can be unintentionally transmitted to another device...

4.3CVSS1.1AI score0.05765EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2021/03/31 7:14 p.m.66 views

CVE-2021-29650

A denial-of-service DoS flaw was identified in the Linux kernel due to an incorrect memory barrier in xtreplacetable in net/netfilter/xtables.c in the netfilter subsystem. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the Red Hat Product...

5.5CVSS6.3AI score0.00413EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/02/08 1:33 p.m.66 views

CVE-2020-36242

A buffer-overflow flaw was found in the python-cryptography package. In certain sequences of update calls when symmetrically encrypting very large payloads 2GB could result in an integer overflow, leading to buffer overflows. Note: This fix is a workaround for the OpenSSL CVE-2021-23840 flaw...

9.1CVSS7.8AI score0.50732EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/02/07 3:15 p.m.66 views

CVE-2017-5664

A vulnerability was discovered in the error page mechanism in Tomcat's DefaultServlet implementation. A crafted HTTP request could cause undesired side effects, possibly including the removal or replacement of the custom error page. Mitigation If it is necessary to have the DefaultServlet propert...

7.5CVSS0.4AI score0.16567EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2020/04/08 5:29 a.m.66 views

CVE-2019-11884

A flaw was found in the Linux kernel's implementation of the Bluetooth Human Interface Device Protocol HIDP. A local attacker with access permissions to the Bluetooth device can issue an IOCTL which will trigger the dohidpsockioctl function in net/bluetooth/hidp/sock.c.c. This function can leak...

6.8CVSS2.7AI score0.00495EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/01/19 9:51 p.m.66 views

CVE-2019-19241

In the Linux kernel before 5.4.2, the iouring feature leads to requests that inadvertently have UID 0 and full capabilities, aka CID-181e448d8709. This is related to fs/io-wq.c, fs/iouring.c, and net/socket.c. For example, an attacker can bypass intended restrictions on adding an IPv4 address to...

7.8CVSS4.2AI score0.01087EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2020/01/15 3:43 a.m.66 views

CVE-2019-2983

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

4.3CVSS4.5AI score0.03749EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/12/26 10:17 a.m.66 views

CVE-2019-11047

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

6.5CVSS3.1AI score0.07473EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2019/12/10 8:18 a.m.66 views

CVE-2019-19338

A flaw was found in the fix for CVE-2019-11135, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort TAA error occurs. When a guest is running on a host CPU affected by the TAA flaw TAANO=0, but is not affected by the MDS issue MDSNO=1, the guest was to...

6.5CVSS1.4AI score0.03133EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2019/11/07 10:14 p.m.66 views

CVE-2017-10295

It was found that the HttpURLConnection and HttpsURLConnection classes in the Networking component of OpenJDK failed to check for newline characters embedded in URLs. An attacker able to make a Java application perform an HTTP request using an attacker provided URL could possibly inject additiona...

4.3CVSS1.3AI score0.02199EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/08 10:39 p.m.66 views

CVE-2017-3738

There is an overflow bug in the AVX2 Montgomery multiplication procedure used in exponentiation with 1024-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely. Attack...

7.5CVSS2.4AI score0.83645EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/03/01 6:49 a.m.66 views

CVE-2019-9192

In the GNU C Library aka glibc or libc6 through 2.29, checkdstlimitscalcpos1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '|\\1\\1' in grep, a different issue than CVE-2018-20796. NOTE: the software maintainer disputes that this is a vulnerability because the behavior occurs...

7.5CVSS7.3AI score0.05804EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2018/06/27 8:49 a.m.66 views

CVE-2017-7658

In Eclipse Jetty Server, versions 9.2.x and older, 9.3.x all non HTTP/1.x configurations, and 9.4.x all HTTP/1.x configurations, when presented with two content-lengths headers, Jetty ignored the second. When presented with a content-length and a chunked encoding header, the content-length was...

9.8CVSS2.8AI score0.20985EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/01/04 4:19 p.m.66 views

CVE-2017-18017

The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service use-after-free and memory corruption or possibly have unspecified other impact by leveraging the presence of xtTCPMSS in an...

10CVSS7.1AI score0.52189EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/12/14 2:19 a.m.66 views

CVE-2017-17448

The net/netfilter/nfnetlinkcthelper.c function in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions because the nfnlcthelperlist data structure is shared across all net...

7.8CVSS4.2AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/11/21 9:50 a.m.66 views

CVE-2017-16544

It was found that the tab auto-completion feature of BusyBox did not sanitize filenames, leading to execution of arbitrary escape sequences in the terminal emulator. Exploitation of this flaw by an attacker could potentially result in code execution, arbitrary file writes, or other attacks under...

8.8CVSS2.2AI score0.0624EPSS
Exploits12References2
RedhatCVE
RedhatCVE
added 2017/03/03 3:19 p.m.66 views

CVE-2017-6353

It was found that the code in net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service invalid unlock and double free via a multithreaded application. This...

7.1CVSS4.5AI score0.01162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/01/25 4:17 p.m.66 views

CVE-2016-7480

The SplObjectStorage unserialize implementation in ext/spl/splobserver.c in PHP before 7.0.12 does not verify that a key is an object, which allows remote attackers to execute arbitrary code or cause a denial of service uninitialized memory access via crafted serialized data...

9.8CVSS9.4AI score0.41558EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:46 a.m.65 views

CVE-2022-31619

A vulnerability has been identified in Teamcenter V12.4 All versions V12.4.0.13, Teamcenter V13.0 All versions V13.0.0.9, Teamcenter V13.1 All versions V13.1.0.9, Teamcenter V13.2 All versions V13.2.0.9, Teamcenter V13.3 All versions V13.3.0.3, Teamcenter V14.0 All versions V14.0.0.2. Java EE...

8.8CVSS7.5AI score0.01256EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/19 7:43 a.m.65 views

CVE-2025-10750

The PowerBI Embed Reports plugin for WordPress is vulnerable to Sensitive Information Disclosure in all versions up to, and including, 1.2.0. This is due to missing capability checks and authentication verification on the 'testUser' endpoint accessible via the moepbradminobserver function hooked ...

5.3CVSS5.4AI score0.00449EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/05 3:31 p.m.65 views

CVE-2025-22457

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution...

9.8CVSS8.4AI score0.99979EPSS
Exploits7References1
RedhatCVE
RedhatCVE
added 2024/05/06 5:55 p.m.65 views

CVE-2024-4438

The etcd package distributed with the Red Hat OpenStack platform has an incomplete fix for CVE-2023-39325/CVE-2023-44487, known as Rapid Reset. This issue occurs because the etcd package in the Red Hat OpenStack platform is using http://golang.org/x/net/http2 instead of the one provided by Red Ha...

7.5CVSS8.2AI score0.99999EPSS
Exploits19References3
RedhatCVE
RedhatCVE
added 2024/04/08 10:51 a.m.65 views

CVE-2024-25742

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

7.1CVSS5.8AI score0.0018EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/01/06 10:21 a.m.65 views

CVE-2023-52323

A flaw was found in PyCryptodome/pycryptodomex which may allow for side-channel leakage when performing OAEP decryption, which could be exploited to carry out a Manger attack...

5.9CVSS5.3AI score0.00618EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/11/21 11:10 p.m.65 views

CVE-2023-6206

The Mozilla Foundation Security Advisory describes this flaw as: The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant butto...

7.5CVSS6.8AI score0.00558EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/11/10 9:44 p.m.65 views

CVE-2021-41411

A flaw was found in the XML external entity injection vulnerability in the KieModuleMarshaller.java module of drools-compiler. This issue may lead to the disclosure of sensitive information...

9.8CVSS9.3AI score0.01193EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/10/30 11:27 a.m.65 views

CVE-2023-31418

An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. This flaw allows an unauthenticated user to force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests...

7.5CVSS6.5AI score0.01232EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/10/20 10:56 a.m.65 views

CVE-2023-43622

A flaw was found in the modhttp2 module of httpd. This flaw allows an attacker opening an HTTP/2 connection with an initial window size of 0 to block handling of that connection indefinitely. This vulnerability can exhaust worker resources in the server, similar to the well-known "slow loris"...

7.5CVSS7.2AI score0.70595EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/05/24 3:40 a.m.65 views

CVE-2023-32681

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.5AI score0.02782EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/04/26 6:22 a.m.65 views

CVE-2023-29007

A vulnerability was found in Git. This security flaw occurs when renaming or deleting a section from a configuration file, where certain malicious configuration values may be misinterpreted as the beginning of a new configuration section. This flaw leads to arbitrary configuration injection...

7.8CVSS7.3AI score0.06079EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2023/03/05 12:29 p.m.65 views

CVE-2022-20132

An out-of-bounds read flaw was found in the Linux kernel’s hidisusinglldriver function, where the usage was found in how a user inserts a malicious USB device. This flaw allows a local user to access information without the required privileges...

4.9CVSS3.7AI score0.00198EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/02/27 6:30 p.m.65 views

CVE-2023-1075

A memory leak flaw was found in the Linux kernel's TLS protocol. This issue could allow a local user unauthorized access to some memory. Mitigation To mitigate this issue, prevent module tls from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel modu...

3.3CVSS5.3AI score0.00217EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/02/27 6:30 p.m.65 views

CVE-2023-1074

A memory leak flaw was found in the Linux kernel's Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. This could allow a local user to starve resources, causing a denial of service. Mitigation To...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2023/01/02 2:35 p.m.65 views

CVE-2021-4127

The Mozilla Foundation Security Advisory describes this issue as: An out of date graphics library Angle likely contained vulnerabilities that could potentially be exploited...

9.8CVSS3.4AI score0.00901EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2022/12/08 6:4 p.m.65 views

CVE-2022-45934

An integer overflow flaw was found in the Linux kernel’s L2CAP bluetooth functionality in how a user generates malicious L2CAPCONFREQ packets. This flaw allows a local or bluetooth connection user to crash the system. Mitigation To mitigate these vulnerabilities on the operating system level,...

6.5CVSS8.3AI score0.00747EPSS
Exploits0References4
Total number of security vulnerabilities5000