Lucene search
K
RedhatcveMost viewed

206304 matches found

RedhatCVE
RedhatCVE
•added 2021/07/27 12:55 p.m.•63 views

CVE-2021-3667

An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write socket with limited...

6.5CVSS2.3AI score0.01366EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/14 7:25 p.m.•63 views

CVE-2021-36740

A flaw was found in Varnish. The Varnish Cache, with HTTP/2 enabled, allows request smuggling and VCL authorization bypass via a large Content-Length header for a POST request. As a result, this flaw allows the information on the Varnish cache to be poisoned. The highest threat from this...

8.1CVSS1.2AI score0.01599EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/07/14 6:22 p.m.•63 views

CVE-2021-36373

When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected...

5.5CVSS2.6AI score0.02511EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/12 2:25 p.m.•63 views

CVE-2021-3642

A flaw was found in Wildfly Elytron where ScramServer may be susceptible to Timing Attack if enabled. The highest threat of this vulnerability is confidentiality...

5.3CVSS1.5AI score0.00846EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/06 8:45 p.m.•63 views

CVE-2021-3637

A flaw was found in keycloak-model-infinispan where the authenticationSessions map in RootAuthenticationSessionEntity grows boundlessly. This issue leads to a denial of service...

7.5CVSS4.3AI score0.01129EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/01 5:22 p.m.•63 views

CVE-2021-29464

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

7.8CVSS4.5AI score0.01499EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/21 7:0 p.m.•63 views

CVE-2021-3612

An out-of-bounds memory write flaw was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to...

7.8CVSS0.5AI score0.00687EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/18 5:29 p.m.•63 views

CVE-2021-32575

A flaw was found in Nomad. The bridge networking mode in HashiCorp Nomad and Nomad Enterprise allows ARP spoofing from other bridged tasks on the same node...

6.5CVSS1.3AI score0.00512EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/17 7:0 p.m.•63 views

CVE-2021-3608

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. The issue occurs while handling a "PVRDMAREGDSRHIGH" write from the guest and may result in a crash of QEMU or cause undefined behavior due to the access of an uninitialized pointer. The highest threat from this...

6CVSS2.9AI score0.00363EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/20 11:21 a.m.•63 views

CVE-2021-3556

A flaw was found in libvirt in the virConnectListAllNodeDevices API. It only affects hosts with a PCI device and driver that supports mediated devices ex., GRID driver. This flaw allows an unprivileged client with a read-only connection to crash the libvirt daemon by executing the 'nodedev-list'...

6.3AI score
Exploits0References1
RedhatCVE
RedhatCVE
•added 2021/05/19 3:54 p.m.•63 views

CVE-2021-28652

A flaw was found in Squid. A parser validation bug could allow a trusted client with Cache Manager API access privileges to trigger memory leaks, potentially resulting in a denial of service against Squid. The highest threat from this vulnerability is to system availability. Mitigation To mitigat...

6.8CVSS3.1AI score0.04341EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:27 a.m.•63 views

CVE-2021-32617

There's a flaw in the xmpsdk component shipped with exiv2. An attacker who is able to submit a crafted file to be processed by an application linked with the exiv2 library could cause an excessive consumption of resources, potentially leading to denial of service. The greatest impact of this flaw...

6.2CVSS2.4AI score0.01174EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:27 a.m.•63 views

CVE-2021-29957

If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...

4.3CVSS2.2AI score0.0094EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•63 views

CVE-2020-26143

A vulnerability was found in Linux kernel, where the WiFi implementations assemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or...

6.5CVSS0.7AI score0.04173EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:25 a.m.•63 views

CVE-2021-3543

A flaw null pointer dereference in the Nitro Enclaves kernel driver was found in the way that Enclaves VMs forces closures on the enclave file descriptor. A local user of a host machine could use this flaw to crash the system or escalate their privileges on the system...

7.2CVSS1.1AI score0.00301EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/04/20 3:20 a.m.•63 views

CVE-2021-23961

Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine. This vulnerability affects Firefox 85...

7.4CVSS0.7AI score0.01323EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/03/22 6:37 p.m.•63 views

CVE-2021-28950

A denial of service in the kernel side of the FUSE functionality can allow a local system to create a denial of service. Mitigation As the FUSE module will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions: echo "install fu...

5.5CVSS0.8AI score0.0036EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/02 6:33 p.m.•63 views

CVE-2021-3408

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

8.2CVSS7.2AI score0.0061EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/04 2:3 p.m.•63 views

CVE-2020-25672

A memory leak in the Linux kernel’s NFC LLCP protocol implementation was found in the way a user triggers the llcpsockconnect function. This flaw allows a local user to starve the resources, causing a denial of service...

7.5CVSS7.1AI score0.03233EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/10/19 4:45 a.m.•63 views

CVE-2020-25656

A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality...

4.1CVSS5.6AI score0.00434EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/10/13 8:16 p.m.•63 views

CVE-2020-25649

A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity XXE attacks. The highest threat from this vulnerability is data integrity. Mitigation There is currently no known mitigation for this flaw...

7.5CVSS2.4AI score0.17611EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/08/18 7:29 p.m.•63 views

CVE-2020-8912

A flaw was found in the AWS S3 Crypto SDK where algorithm parameters for the data encryption key are not authenticated. This flaw allows attackers with S3 bucket write access to change the negotiated encryption algorithm, potentially providing viable brute force methods to recover plaintext. This...

2.1CVSS4.2AI score0.00231EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/07/15 8:8 p.m.•63 views

CVE-2020-8203

A flaw was found in nodejs-lodash in versions 4.17.15 and earlier. A prototype pollution attack is possible which can lead to arbitrary code execution. The primary threat from this vulnerability is to data integrity and system availability...

5.8CVSS6.5AI score0.05213EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/05/19 2:25 p.m.•63 views

CVE-2020-10135

A flaw was discovered in the Bluetooth protocol affecting the Bluetooth BR/EDR authentication. An attacker with physical access to the Bluetooth connection could perform a spoofing attack impersonating the address of a previously paired remote device. This attack may result in the attacking devic...

4.8CVSS1.9AI score0.02386EPSS
Exploits2References5
RedhatCVE
RedhatCVE
•added 2020/04/28 12:10 a.m.•63 views

CVE-2019-19447

A flaw was found in the Linux kernel's ext4unlink function. An attacker could corrupt memory or escalate privileges when deleting a file from a recently unmounted specially crafted ext4 filesystem, including local, USB, and iSCSI. Mitigation Ext4 filesytems are built into the kernel so it is not...

7.8CVSS2.5AI score0.03539EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/04/07 11:2 p.m.•63 views

CVE-2019-9637

An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to...

7.5CVSS2.9AI score0.07347EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/17 5:44 p.m.•63 views

CVE-2019-19332

An out-of-bounds memory write issue was found in the way the Linux kernel's KVM hypervisor handled the 'KVMGETEMULATEDCPUID' ioctl2 request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the '/dev/kvm' device could use this flaw to crash the system, resulti...

6.1CVSS1.5AI score0.00679EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2019/11/25 8:48 a.m.•63 views

CVE-2019-14897

A stack-based buffer overflow was found in the Linux kernel's Marvell WiFi chip driver. An attacker is able to cause a denial of service system crash or, possibly execute arbitrary code, when a STA works in IBSS mode allows connecting stations together without the use of an AP and connects to...

9.8CVSS5.5AI score0.02909EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/09 11:45 a.m.•63 views

CVE-2017-9798

A use-after-free flaw was found in the way httpd handled invalid and previously unregistered HTTP methods specified in the Limit directive used in an .htaccess file. A remote attacker could possibly use this flaw to disclose portions of the server memory, or cause httpd child process to crash...

7.5CVSS0.1AI score0.94999EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2019/10/07 11:8 a.m.•63 views

CVE-2019-15927

An out-of-bounds flaw was found in the ALSA usb-audio subsystem in the Linux kernel. An array boundary check was needed to restrict the array size; failing this can cause an out-of-bound access problem. Data confidentiality and integrity, as well as system availability, are all threats with this...

7.8CVSS1.3AI score0.00412EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/08/30 12:28 a.m.•63 views

CVE-2019-14271

A flaw was discovered in Docker if it is compiled with Go 1.11. During a docker cp command, the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container. An attacker could abuse this flaw by executing code with the root privileges...

9.8CVSS3.3AI score0.18828EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/08/21 5:22 a.m.•63 views

CVE-2019-10098

A vulnerability was discovered in Apache httpd, in modrewrite. Certain self-referential modrewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers...

6.1CVSS0.9AI score0.73981EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2019/07/22 2:36 p.m.•63 views

CVE-2019-10173

It was found that xstream API version 1.4.10 introduced a regression for a previous deserialization flaw. If the security framework has not been initialized, it may allow a remote attacker to run arbitrary shell commands when unmarshalling XML or any supported format. This a regression of...

9.8CVSS6AI score0.94774EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2017/09/07 2:48 p.m.•63 views

CVE-2017-12611

It was found that Freemarker in Struts would permit using read-only properties in value assignment of tag expressions. An attacker could use this to execute arbitrary code...

9.8CVSS3.5AI score0.8802EPSS
Exploits6References2
RedhatCVE
RedhatCVE
•added 2017/05/19 2:48 p.m.•63 views

CVE-2017-9077

The tcpv6synrecvsock function in net/ipv6/tcpipv6.c in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. An unprivileged local user could use this fla...

7.8CVSS3.8AI score0.01372EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2017/02/09 3:48 p.m.•63 views

CVE-2017-3159

It was found that the camel-snakeyaml component is exploitable for code execution. An attacker could use this vulnerability to send specially crafted payload to a camel-snakeyaml endpoint and causing a remote code execution attack...

9.8CVSS4.2AI score0.06286EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/02/07 9:22 a.m.•63 views

CVE-2017-5897

An issue was found in the Linux kernel ipv6 implementation of GRE tunnels which allows a remote attacker to trigger an out-of-bounds access. At this time we understand no trust barrier has been crossed and there is no security implications in this flaw...

9.8CVSS5.5AI score0.04953EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/07/12 8:48 a.m.•63 views

CVE-2016-5696

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS1.1AI score0.15073EPSS
Exploits3References2
RedhatCVE
RedhatCVE
•added 2025/03/30 3:30 p.m.•62 views

CVE-2025-29928

authentik is an open-source identity provider. Prior to versions 2024.12.4 and 2025.2.3, when authentik was configured to use the database for session storage which is a non-default setting, deleting sessions via the Web Interface or the API would not revoke the session and the session holder wou...

8CVSS7.1AI score0.00364EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2024/05/03 8:53 a.m.•62 views

CVE-2024-34144

A sandbox bypass vulnerability was found in the Jenkins Script Security Plugin involving crafted constructor bodies, enabling the circumvention of security restrictions. With crafted constructor bodies, this flaw allows authenticated attackers to define and execute sandboxed scripts, including...

9.8CVSS7.5AI score0.48081EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2024/04/26 6:4 a.m.•62 views

CVE-2024-33664

python-jose through 3.3.0 allows attackers to cause a denial of service resource consumption during a decode via a crafted JSON Web Encryption JWE token with a high compression ratio, aka a "JWT bomb." This is similar to CVE-2024-21319...

6.8CVSS6.2AI score0.02868EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2024/04/24 5:34 a.m.•62 views

CVE-2024-27282

A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings. Mitigation Mitigation for this issue is either not available or the currently...

6.6CVSS7.2AI score0.00629EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/03/27 8:32 a.m.•62 views

CVE-2024-2955

A flaw was found in the T.38 dissector of Wireshark. This issue occurs when decoding malformed packets from a pcap file or from the network, causing a use-after-free problem, resulting in a denial of service...

6.5CVSS7.4AI score0.01403EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/12/18 10:58 p.m.•62 views

CVE-2023-6004

A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the client. This issue may allow an attacker to inject malicious code into the command of the features mentioned through the hostname parameter. Mitigation Mitigation for...

4.8CVSS5.9AI score0.00449EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/11/15 12:28 a.m.•62 views

CVE-2023-20592

A flaw was found in some of AMD CPU's due to improper or unexpected behavior of the INVD. This issue may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU, potentially leading to a loss of guest virtual machine VM memory integrity. Mitigation...

5.3CVSS6.2AI score0.01018EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/10/27 9:56 a.m.•62 views

CVE-2023-5824

A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid may grow a cached HTTP response header beyond the configured maximum size, causing a stall or crash of the worker process when a large header is retrieved from the disk...

7.5CVSS7.3AI score0.05229EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/09/30 5:54 p.m.•62 views

CVE-2023-42116

The vulnerability was found in Exim within the handling of NTLM challenge requests. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the...

8.1CVSS6.6AI score0.03158EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2023/07/30 12:18 p.m.•62 views

CVE-2023-4004

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nftpipaporemove function with the element, without a NFTSETEXTKEYEND. This issue could allow a local user to crash the system or potentially escalate their privileges on the system. Mitigation This flaw...

7.8CVSS7.6AI score0.0095EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/30 7:17 a.m.•62 views

CVE-2023-32435

A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution. Mitigation This vulnerability can be mitigated by setting the environment variable JSCuseWebAssembly=0, which will disable support for WebAssembly. It's not necessary...

8.8CVSS8.8AI score0.22951EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/06/21 4:24 p.m.•62 views

CVE-2023-25194

A flaw was found in Apache Kafka Connect's REST API that permits configuration of SASL property by an authenticated operator, which could allow connection to a malicious LDAP server and subsequent deserialization of malicious content. This issue could allow an authenticated attacker to cause a...

8.8CVSS7.6AI score0.95302EPSS
Exploits8References5
Total number of security vulnerabilities5000