Lucene search
K
RedhatcveMost viewed

206305 matches found

RedhatCVE
RedhatCVE
•added 2018/01/04 4:19 p.m.•65 views

CVE-2017-18017

The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of service use-after-free and memory corruption or possibly have unspecified other impact by leveraging the presence of xtTCPMSS in an...

10CVSS7.1AI score0.52189EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/12/14 2:19 a.m.•65 views

CVE-2017-17448

The net/netfilter/nfnetlinkcthelper.c function in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions because the nfnlcthelperlist data structure is shared across all net...

7.8CVSS4.2AI score0.00372EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/11/21 9:50 a.m.•65 views

CVE-2017-16544

It was found that the tab auto-completion feature of BusyBox did not sanitize filenames, leading to execution of arbitrary escape sequences in the terminal emulator. Exploitation of this flaw by an attacker could potentially result in code execution, arbitrary file writes, or other attacks under...

8.8CVSS2.2AI score0.0624EPSS
Exploits12References2
RedhatCVE
RedhatCVE
•added 2016/09/01 8:19 a.m.•65 views

CVE-2016-5164

Cross-site scripting XSS vulnerability in WebKit/Source/platform/v8inspector/V8Debugger.cpp in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web script or HTML into the Developer Tools aka...

6.5CVSS3.9AI score0.01042EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2025/04/05 3:31 p.m.•64 views

CVE-2025-22457

A stack-based buffer overflow in Ivanti Connect Secure before version 22.7R2.6, Ivanti Policy Secure before version 22.7R1.4, and Ivanti ZTA Gateways before version 22.8R2.2 allows a remote unauthenticated attacker to achieve remote code execution...

9.8CVSS8.4AI score0.99973EPSS
Exploits7References1
RedhatCVE
RedhatCVE
•added 2024/01/06 10:21 a.m.•64 views

CVE-2023-52323

A flaw was found in PyCryptodome/pycryptodomex which may allow for side-channel leakage when performing OAEP decryption, which could be exploited to carry out a Manger attack...

5.9CVSS5.3AI score0.00618EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/12/25 10:30 p.m.•64 views

CVE-2023-51765

A flaw was found in some SMTP server configurations in Sendmail. This issue may allow a remote attacker to break out of the email message data to "smuggle" SMTP commands and send spoofed emails that pass SPF checks. Mitigation Mitigation for this issue is either not available or the currently...

5.3CVSS5AI score0.01073EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2023/11/21 11:10 p.m.•64 views

CVE-2023-6209

The Mozilla Foundation Security Advisory describes this flaw as: Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problems in web sites...

6.1CVSS6.2AI score0.01406EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/11/21 11:10 p.m.•64 views

CVE-2023-6206

The Mozilla Foundation Security Advisory describes this flaw as: The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click where the permission grant butto...

7.5CVSS6.8AI score0.00558EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/10/30 11:27 a.m.•64 views

CVE-2023-31418

An issue has been identified with how Elasticsearch handled incoming requests on the HTTP layer. This flaw allows an unauthenticated user to force an Elasticsearch node to exit with an OutOfMemory error by sending a moderate number of malformed HTTP requests...

7.5CVSS6.5AI score0.01232EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/10/20 10:56 a.m.•64 views

CVE-2023-43622

A flaw was found in the modhttp2 module of httpd. This flaw allows an attacker opening an HTTP/2 connection with an initial window size of 0 to block handling of that connection indefinitely. This vulnerability can exhaust worker resources in the server, similar to the well-known "slow loris"...

7.5CVSS7.2AI score0.70595EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/10/05 8:25 a.m.•64 views

CVE-2023-5345

A flaw was found in the SMB client component in the Linux kernel. In case of an error in smb3fscontextparseparam, ctx-password was freed, but the field was not set to NULL, potentially leading to a use-after-free vulnerability. This flaw allows a local user to crash or potentially escalate their...

7.8CVSS7.4AI score0.0047EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/23 5:47 a.m.•64 views

CVE-2023-26115

A flaw was found in the Node.js word-wrap module, where it is vulnerable to a denial of service caused by a Regular expression denial of service ReDoS issue in the result variable. By sending a specially crafted regex input, a remote attacker can cause a denial of service...

7.5CVSS6.6AI score0.01709EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/05/29 5:40 a.m.•64 views

CVE-2023-34152

A vulnerability was found in ImageMagick. This issue can allow remote code execution in OpenBlob with --enable-pipes configured...

9.4CVSS7.9AI score0.08011EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2023/05/24 3:40 a.m.•64 views

CVE-2023-32681

A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuildproxies is used to recompute and reattach the Proxy-Authorization...

6.1CVSS6.5AI score0.02782EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/03/20 10:13 a.m.•64 views

CVE-2022-4899

A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun...

7.5CVSS7.5AI score0.01588EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/05 12:29 p.m.•64 views

CVE-2022-20132

An out-of-bounds read flaw was found in the Linux kernel’s hidisusinglldriver function, where the usage was found in how a user inserts a malicious USB device. This flaw allows a local user to access information without the required privileges...

4.9CVSS3.7AI score0.00198EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/27 6:30 p.m.•64 views

CVE-2023-1075

A memory leak flaw was found in the Linux kernel's TLS protocol. This issue could allow a local user unauthorized access to some memory. Mitigation To mitigate this issue, prevent module tls from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel modu...

3.3CVSS5.3AI score0.00217EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/02/17 11:57 a.m.•64 views

CVE-2023-23916

A flaw was found in the Curl package. A malicious server can insert an unlimited number of compression steps. This decompression chain could result in out-of-memory errors...

6.5CVSS6.5AI score0.01703EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/01/02 2:35 p.m.•64 views

CVE-2021-4127

The Mozilla Foundation Security Advisory describes this issue as: An out of date graphics library Angle likely contained vulnerabilities that could potentially be exploited...

9.8CVSS3.4AI score0.00901EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/09/23 6:18 p.m.•64 views

CVE-2022-31197

A flaw was found in PostgresQL. This flaw allows an attacker to benefit from a miss escaping character and leads to a SQL injection attack due to Java.sql.ResultRow.refreshRow implementation from PGSQL...

8CVSS3.2AI score0.01662EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/08/25 1:40 p.m.•64 views

CVE-2022-2989

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to...

3.6CVSS2.1AI score0.00307EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/07/15 10:33 a.m.•64 views

CVE-2022-32148

A flaw was found in net/http/httputil golang package. When httputil.ReverseProxy.ServeHTTP is called with a Request.Header map containing a nil value for the X-Forwarded-For header, ReverseProxy could set the client IP incorrectly. This issue may affect confidentiality...

6.5CVSS2.2AI score0.01103EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/06/29 8:5 p.m.•64 views

CVE-2022-2256

A Stored Cross-site scripting XSS vulnerability was found in keycloak. This flaw allows a privileged attacker to execute malicious scripts in the admin console, abusing the default roles functionality...

3.8CVSS3.3AI score0.00572EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/06/09 10:57 p.m.•64 views

CVE-2022-29225

A flaw was found in Envoy. A specifically constructed HTTP body delivered by an untrusted downstream or upstream peer whose decompressed size is dramatically larger than the compressed size can be sent by an attacker to cause a denial of service. Mitigation This can be mitigated by disabling...

7.5CVSS1.6AI score0.0144EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/19 4:18 a.m.•64 views

CVE-2022-30065

A flaw was found in BusyBox. It did not properly sanitize while processing a crafted awk pattern, leading to possible code execution...

7.8CVSS2.4AI score0.01167EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/05/17 3:1 p.m.•64 views

CVE-2022-24823

CVE-2021-21290 contains an incomplete fix, and this addresses the issue found in netty. When using multipart decoders in netty, local information disclosure can occur via the local system temporary directory if temporary storing of uploads on the disk is enabled. Mitigation As a workaround, speci...

6.2CVSS6.4AI score0.01777EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2022/05/16 2:31 p.m.•64 views

CVE-2021-33117

A flaw was found in hw. Improper access control for some third-generation IntelR XeonR Scalable processors before BIOS version MR7 may potentially allow a local attacker to enable information disclosure via local access. Mitigation Mitigation for this issue is either not available or the currentl...

6.5CVSS5.4AI score0.00303EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/11 8:1 a.m.•64 views

CVE-2022-27781

A vulnerability was found in curl. This issue occurs due to an erroneous function. A malicious server could make curl within Network Security Services NSS get stuck in a never-ending busy loop when trying to retrieve that information. This flaw allows an Infinite Loop, affecting system availabili...

7.5CVSS3.2AI score0.02434EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/07 2:6 p.m.•64 views

CVE-2016-2124

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required. Mitigation Ensure the following global smb.conf parameters are set to their default values as show...

6.8CVSS7.5AI score0.01752EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/26 6:54 a.m.•64 views

CVE-2022-27380

A flaw was found in MariaDB. The component, mydecimal::operator=, allows attackers to cause a denial of service DoS via specially crafted SQL statements, affecting availability...

7.5CVSS5.1AI score0.02264EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/13 9:54 a.m.•64 views

CVE-2022-29047

A flaw was found in the Jenkins Pipeline: Shared Groovy Libraries plugin. The Jenkins Pipeline: Shared Groovy Libraries plugin allows attackers to submit pull requests. However, the attacker cannot commit directly to the configured Source Control Management SCM to effectively change the Pipeline...

7.3CVSS1.6AI score0.01116EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/08 8:27 a.m.•64 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS8.5AI score0.04271EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/15 11:42 a.m.•64 views

CVE-2022-26490

A buffer overflow flaw was found in the Linux kernel’s NFC protocol functionality. This flaw allows a local user to crash or escalate their privileges on the system...

7.8CVSS3.7AI score0.00432EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/23 3:26 p.m.•64 views

CVE-2022-0711

A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. This flaw could allow an attacker to send crafted HTTP response packets which lead to an infinite loop, eventually resulting in a denial of service condition. The highest threat from this vulnerabili...

7.5CVSS0.5AI score0.16563EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/22 4:20 a.m.•64 views

CVE-2021-44575

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-3200 Reason: This candidate is a duplicate of CVE-2021-3200. Notes: All CVE users should reference CVE-2021-3200 instead of this candidate. Al...

4.3CVSS6.7AI score0.01313EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/17 3:22 p.m.•64 views

CVE-2022-0629

A stack-based buffer overflow flaw was found in vim's gaconcatshortenesc function of src/testing.c file. This flaw allows an attacker to trick a user into opening a crafted file, triggering a stack-overflow. This issue can lead to an application crash, causing a denial of service. Mitigation...

8.4CVSS3.3AI score0.01806EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/17 6:50 a.m.•64 views

CVE-2022-25265

A vulnerability was found in the Linux kernel when certain binary files have the exec-all attribute with gcc. This issue can cause the execution of bytes located in the non-executable regions of a file. Mitigation Mitigation for this issue is either not available or the currently available option...

7.8CVSS2.4AI score0.01054EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/11/26 2:21 p.m.•64 views

CVE-2021-4002

A memory leak flaw in the Linux kernel's hugetlbfs memory usage was found in the way the user maps some regions of memory twice using shmget which are aligned to PUD alignment with the fault of some of the memory pages. A local user could use this flaw to get unauthorized access to some data...

5.1CVSS6AI score0.00515EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2021/10/04 2:39 p.m.•64 views

CVE-2021-3856

ClassLoaderTheme and ClasspathThemeResourceProviderFactory allows reading any file available as a resource to the classloader. By sending requests for theme resources with a relative path from an external HTTP client, the client will receive the content of random files if available...

4.3CVSS1AI score0.00897EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/15 6:52 a.m.•64 views

CVE-2021-22946

A flaw was found in curl. This flaw lies in the --ssl-reqd option or related settings in libcurl. Users specify this flag to upgrade to TLS when communicating with either IMAP, POP3 or a FTP server. An attacker controlling such servers could return a crafted response which could lead to curl clie...

7.5CVSS1.9AI score0.04224EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/08/24 3:6 p.m.•64 views

CVE-2021-3712

It was found that openssl assumed ASN.1 strings to be NUL terminated. A malicious actor may be able to force an application into calling openssl function with a specially crafted, non-NUL terminated string to deliberately hit this bug, which may result in a crash of the application, causing a...

7.4CVSS1.6AI score0.50445EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/13 6:19 p.m.•64 views

CVE-2021-38511

An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal...

7.5CVSS4.1AI score0.01392EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/08/11 4:20 a.m.•64 views

CVE-2021-29980

Uninitialized memory in a canvas object could have caused an incorrect free leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and Firefox 91...

8.8CVSS2.8AI score0.01406EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/22 2:56 p.m.•64 views

CVE-2021-3640

A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendmsg with the expected controllable faulting memory page. A privilege...

7CVSS0.5AI score0.0037EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2021/07/06 8:45 p.m.•64 views

CVE-2021-3637

A flaw was found in keycloak-model-infinispan where the authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly. This issue leads to a denial of service...

7.5CVSS4.3AI score0.01129EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/06 5:15 p.m.•64 views

CVE-2021-36084

The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...

3.3CVSS5.2AI score0.00481EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/06/10 6:23 p.m.•64 views

CVE-2017-12621

An XML External Entity XXE Injection vulnerability was found in Commons Jelly library. If a custom doctype entity is declared with a SYSTEM entity with a URL and that entity is used in the body of the Jelly file, the parser will attempt to connect to provided URL...

9.8CVSS4AI score0.08536EPSS
Exploits3References2
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•64 views

CVE-2020-26143

A vulnerability was found in Linux kernel, where the WiFi implementations assemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or...

6.5CVSS0.7AI score0.04173EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/22 8:28 p.m.•64 views

CVE-2021-28964

A race condition flaw was found in getoldroot in fs/btrfs/ctree.c in the Linux kernel in btrfs file-system. This flaw allows a local attacker with a special user privilege to cause a denial of service due to not locking an extent buffer before a cloning operation. The highest threat from this...

4.7CVSS6.1AI score0.00267EPSS
Exploits0References3
Total number of security vulnerabilities5000