Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2023/08/08 5:21 p.m.•64 views

CVE-2023-34454

A flaw was found in Snappy-java's shuffle function, which does not check input sizes before beginning operations. This issue could allow an attacker to send malicious input to trigger an overflow error that crashes the program, resulting in a denial of service...

5.9CVSS6.9AI score0.01469EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/07/30 12:18 p.m.•64 views

CVE-2023-4004

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nftpipaporemove function with the element, without a NFTSETEXTKEYEND. This issue could allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation This flaw...

7.8CVSS7.6AI score0.0095EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/01 6:23 a.m.•64 views

CVE-2023-2976

A flaw was found in Guava. The methodology for temporary directories and files can allow other local users or apps with accordant permissions to access the temp files, possibly leading to information exposure or tampering in the files created in the directory. Mitigation Temp files should be...

4.4CVSS6.7AI score0.00248EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/23 5:47 a.m.•64 views

CVE-2023-26115

A flaw was found in the Node.js word-wrap module, where it is vulnerable to a denial of service caused by a Regular expression denial of service ReDoS issue in the result variable. By sending a specially crafted regex input, a remote attacker can cause a denial of service...

7.5CVSS6.6AI score0.01709EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/05/29 5:40 a.m.•64 views

CVE-2023-34152

A vulnerability was found in ImageMagick. This issue can allow remote code execution in OpenBlob with --enable-pipes configured...

9.4CVSS7.9AI score0.08011EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2023/03/21 4:14 p.m.•64 views

CVE-2023-0462

An arbitrary code execution flaw was found in Foreman. This issue may allow an admin user to execute arbitrary code on the underlying operating system by setting global parameters with a YAML payload...

9.1CVSS7.8AI score0.00961EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/20 10:13 a.m.•64 views

CVE-2022-4899

A vulnerability was found in zstd v1.4.10, where an attacker can supply empty string as an argument to the command line tool to cause buffer overrun...

7.5CVSS7.5AI score0.01588EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/02/17 11:57 a.m.•64 views

CVE-2023-23916

A flaw was found in the Curl package. A malicious server can insert an unlimited number of compression steps. This decompression chain could result in out-of-memory errors...

6.5CVSS6.5AI score0.01703EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/10/02 4:18 p.m.•64 views

CVE-2021-27854

Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers and Ethernet to Wifi frame translation...

5.3CVSS2.6AI score0.00658EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/06/09 10:57 p.m.•64 views

CVE-2022-29225

A flaw was found in Envoy. A specifically constructed HTTP body delivered by an untrusted downstream or upstream peer whose decompressed size is dramatically larger than the compressed size can be sent by an attacker to cause a denial of service. Mitigation This can be mitigated by disabling...

7.5CVSS1.6AI score0.0144EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/16 4:26 a.m.•64 views

CVE-2022-21190

This affects the package convict before 6.2.3. This is a bypass of CVE-2022-22143. The fix introduced, relies on the startsWith method and does not prevent the vulnerability: before splitting the path, it checks if it starts with proto or this.constructor.prototype. To bypass this check it's...

9.8CVSS2.7AI score0.03802EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2022/05/11 8:1 a.m.•64 views

CVE-2022-27781

A vulnerability was found in curl. This issue occurs due to an erroneous function. A malicious server could make curl within Network Security Services NSS get stuck in a never-ending busy loop when trying to retrieve that information. This flaw allows an Infinite Loop, affecting system availabili...

7.5CVSS3.2AI score0.02434EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/04/13 9:54 a.m.•64 views

CVE-2022-29047

A flaw was found in the Jenkins Pipeline: Shared Groovy Libraries plugin. The Jenkins Pipeline: Shared Groovy Libraries plugin allows attackers to submit pull requests. However, the attacker cannot commit directly to the configured Source Control Management SCM to effectively change the Pipeline...

7.3CVSS1.6AI score0.01116EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/08 8:27 a.m.•64 views

CVE-2022-1271

An arbitrary file write vulnerability was found in GNU gzip's zgrep utility. When zgrep is applied on the attacker's chosen file name for example, a crafted file name, this can overwrite an attacker's content to an arbitrary attacker-selected file. This flaw occurs due to insufficient validation...

8.8CVSS8.5AI score0.04271EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/18 4:17 p.m.•64 views

CVE-2022-27196

Jenkins Favorite Plugin 2.4.0 and earlier does not escape the names of jobs in the favorite column, resulting in a stored cross-site scripting XSS vulnerability exploitable by attackers with Item/Configure or Item/Create permissions...

5.4CVSS2.7AI score0.00792EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/13 3:14 p.m.•64 views

CVE-2022-0742

A memory leak flaw was found in the Linux kernel’s ICMPv6 networking protocol, in the way a user generated malicious ICMPv6 packets. This flaw allows a remote user to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the Re...

9.1CVSS1.5AI score0.04919EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/11 3:20 p.m.•64 views

CVE-2021-39686

A race condition was found in the Linux kernel Android binder driver. The driver is not included to the other kernels, apart from Android devices. This issue could allow a local user to crash the system or potentially escalate their privileges on the system...

8.4CVSS5.1AI score0.00145EPSS
Exploits0References8
RedhatCVE
RedhatCVE
•added 2022/02/23 3:26 p.m.•64 views

CVE-2022-0711

A flaw was found in the way HAProxy processed HTTP responses containing the "Set-Cookie2" header. This flaw could allow an attacker to send crafted HTTP response packets which lead to an infinite loop, eventually resulting in a denial of service condition. The highest threat from this vulnerabili...

7.5CVSS0.5AI score0.16563EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/11/19 5:24 p.m.•64 views

CVE-2021-43976

A denial of service flaw was found in mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c in the usb subsystem of the Linux kernel. This is due to a missing clean-up for a malfunctioning usb device with an unknown recvtype. Mitigation Mitigation for this issue is either not available or...

4.6CVSS6.3AI score0.00643EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/11/18 6:1 p.m.•64 views

CVE-2021-3918

The json-schema Node.JS library was vulnerable to prototype pollution during the validation of a JSON object. An attacker, able to provide a specially crafted JSON file for validation, could use this flaw to modify the behavior of the node program, to, for example, execute arbitrary code...

9.8CVSS9.2AI score0.03563EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/10/05 6:49 p.m.•64 views

CVE-2021-32675

A flaw was found in redis. When parsing an incoming Redis Standard Protocol RESP request, redis allocates memory according to user-specified values, which determine the number of elements in the multi-bulk header and size of each element in the bulk header. This flaw allows an unauthenticated,...

7.5CVSS2.8AI score0.1578EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/10/04 2:39 p.m.•64 views

CVE-2021-3856

ClassLoaderTheme and ClasspathThemeResourceProviderFactory allows reading any file available as a resource to the classloader. By sending requests for theme resources with a relative path from an external HTTP client, the client will receive the content of random files if available...

4.3CVSS1AI score0.00897EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/06 5:22 p.m.•64 views

CVE-2021-39251

The ntfs3g package is susceptible to an input validation attack. When processing a crafted NTFS image there is an improper check. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.7AI score0.00416EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/24 3:6 p.m.•64 views

CVE-2021-3712

It was found that openssl assumed ASN.1 strings to be NUL terminated. A malicious actor may be able to force an application into calling openssl function with a specially crafted, non-NUL terminated string to deliberately hit this bug, which may result in a crash of the application, causing a...

7.4CVSS1.6AI score0.50445EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/13 6:19 p.m.•64 views

CVE-2021-38511

An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal...

7.5CVSS4.1AI score0.01392EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/22 2:56 p.m.•64 views

CVE-2021-3640

A flaw use-after-free in function scosocksendmsg of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIOREGISTER or other way triggers race condition of the call scoconndel together with the call scosocksendmsg with the expected controllable faulting memory page. A privilege...

7CVSS0.5AI score0.0037EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2021/07/06 8:45 p.m.•64 views

CVE-2021-3637

A flaw was found in keycloak-model-infinispan where the authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly. This issue leads to a denial of service...

7.5CVSS4.3AI score0.01129EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/06 5:15 p.m.•64 views

CVE-2021-36084

The CIL compiler in SELinux 3.2 has a use-after-free in cilverifyclassperms called from cilverifyclasspermission and cilpreverifyhelper...

3.3CVSS5.2AI score0.00481EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/07/01 5:22 p.m.•64 views

CVE-2021-29464

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

7.8CVSS4.5AI score0.01499EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•64 views

CVE-2020-26143

A vulnerability was found in Linux kernel, where the WiFi implementations assemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or...

6.5CVSS0.7AI score0.04173EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/01/13 12:46 p.m.•64 views

CVE-2020-28374

A flaw was found in the Linux kernel’s implementation of the Linux SCSI target host, where an authenticated attacker could write to any block on the exported SCSI device backing store. This flaw allows an authenticated attacker to send LIO block requests to the Linux system to overwrite data on t...

8.1CVSS1.6AI score0.06563EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/10/19 4:45 a.m.•64 views

CVE-2020-25656

A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality...

4.1CVSS5.6AI score0.00434EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/10/08 6:35 a.m.•64 views

CVE-2020-26541

A flaw was found in the Linux kernel in certs/blacklist.c, When signature entries for EFICERTX509GUID are contained in the Secure Boot Forbidden Signature Database, the entries are skipped. This can cause a security threat and breach system integrity, confidentiality and even lead to a denial of...

6.9CVSS1.4AI score0.00528EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/09/07 2:21 p.m.•64 views

CVE-2019-20916

A flaw was found in the pip package installer for Python when downloading or installing a remote package via a specified URL. Improper validation of the "Content-Disposition" HTTP response header makes a path traversal attack possible, leading to an arbitrary file overwrite. This flaw allows an...

8CVSS5.4AI score0.03028EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/08/18 7:29 p.m.•64 views

CVE-2020-8912

A flaw was found in the AWS S3 Crypto SDK where algorithm parameters for the data encryption key are not authenticated. This flaw allows attackers with S3 bucket write access to change the negotiated encryption algorithm, potentially providing viable brute force methods to recover plaintext. This...

2.1CVSS4.2AI score0.00231EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/07/15 8:8 p.m.•64 views

CVE-2020-8203

A flaw was found in nodejs-lodash in versions 4.17.15 and earlier. A prototype pollution attack is possible which can lead to arbitrary code execution. The primary threat from this vulnerability is to data integrity and system availability...

5.8CVSS6.5AI score0.05213EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/05/19 2:25 p.m.•64 views

CVE-2020-10135

A flaw was discovered in the Bluetooth protocol affecting the Bluetooth BR/EDR authentication. An attacker with physical access to the Bluetooth connection could perform a spoofing attack impersonating the address of a previously paired remote device. This attack may result in the attacking devic...

4.8CVSS1.9AI score0.02386EPSS
Exploits2References5
RedhatCVE
RedhatCVE
•added 2020/05/05 4:40 p.m.•64 views

CVE-2020-6831

A flaw was found in Mozilla Firefox and Thunderbird. When parsing and validating SCTP chunks in WebRTC a memory buffer overflow could occur leading to memory corruption and an exploitable crash. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

7.5CVSS3.1AI score0.05803EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/28 12:10 a.m.•64 views

CVE-2019-19447

A flaw was found in the Linux kernel's ext4unlink function. An attacker could corrupt memory or escalate privileges when deleting a file from a recently unmounted specially crafted ext4 filesystem, including local, USB, and iSCSI. Mitigation Ext4 filesytems are built into the kernel so it is not...

7.8CVSS2.5AI score0.03539EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/04/09 10:6 a.m.•64 views

CVE-2019-14378

A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the ipreass routine while reassembling incoming packets if the first fragment is bigger than the m-mdat buffer. An attacker could use this flaw to crash the QEMU process on the...

8.8CVSS5.3AI score0.16658EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2020/04/08 10:15 p.m.•64 views

CVE-2018-17972

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary task...

5.5CVSS5.7AI score0.0035EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/04/07 11:2 p.m.•64 views

CVE-2019-9637

An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to...

7.5CVSS2.9AI score0.07347EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/25 8:48 a.m.•64 views

CVE-2019-14897

A stack-based buffer overflow was found in the Linux kernel's Marvell WiFi chip driver. An attacker is able to cause a denial of service system crash or, possibly execute arbitrary code, when a STA works in IBSS mode allows connecting stations together without the use of an AP and connects to...

9.8CVSS5.5AI score0.02909EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/09 11:45 a.m.•64 views

CVE-2017-9798

A use-after-free flaw was found in the way httpd handled invalid and previously unregistered HTTP methods specified in the Limit directive used in an .htaccess file. A remote attacker could possibly use this flaw to disclose portions of the server memory, or cause httpd child process to crash...

7.5CVSS0.1AI score0.94999EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2019/07/22 2:36 p.m.•64 views

CVE-2019-10173

It was found that xstream API version 1.4.10 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. This a regression of...

9.8CVSS6AI score0.94774EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2018/11/28 10:19 a.m.•64 views

CVE-2018-19518

University of Washington IMAP Toolkit 2007f on UNIX, as used in imapopen in PHP and other products, launches an rsh command by means of the imaprimap function in c-client/imap4r1.c and the tcpaopen function in osdep/unix/tcpunix.c without preventing argument injection, which might allow remote...

8.5CVSS3AI score0.9523EPSS
Exploits6References2
RedhatCVE
RedhatCVE
•added 2018/10/17 4:50 a.m.•64 views

CVE-2018-11040

Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP JSON with Padding through AbstractJsonpResponseBodyAdvice for REST controllers and MappingJackson2JsonView for browser...

7.5CVSS2.2AI score0.03244EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/12/12 9:49 a.m.•64 views

CVE-2017-1000409

A buffer overflow in glibc 2.5 released on September 29, 2006 and can be triggered through the LDLIBRARYPATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366...

7.8CVSS5.1AI score0.02733EPSS
Exploits15References1
RedhatCVE
RedhatCVE
•added 2017/05/19 2:48 p.m.•64 views

CVE-2017-9077

The tcpv6synrecvsock function in net/ipv6/tcpipv6.c in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. An unprivileged local user could use this fla...

7.8CVSS3.8AI score0.01372EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2025/02/05 9:55 p.m.•63 views

CVE-2022-24881

Ballcat Codegen provides the function of online editing code to generate templates. In versions prior to 1.0.0.beta.2, attackers can implement remote code execution through malicious code injection of the template engine. This happens because Velocity and freemarker templates are introduced but...

9.8CVSS5.5AI score0.02909EPSS
Exploits1References1
Total number of security vulnerabilities5000