Lucene search
K
RedhatcveMost viewed

206304 matches found

RedhatCVE
RedhatCVE
•added 2022/05/10 8:0 p.m.•62 views

CVE-2022-1662

A flaw was found in convert2rhel, where an Ansible playbook named ansible/run-convert2rhel.yml passes the Red Hat Subscription Manager user password via the CLI to convert2rhel. This flaw allows unauthorized local users to view the password via the process list while convert2rhel is running...

5.9CVSS2.9AI score0.00203EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/05/09 4:56 p.m.•62 views

CVE-2022-1632

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of...

6.5CVSS3.7AI score0.00353EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/03/17 1:44 p.m.•62 views

CVE-2022-23648

An information leak was discovered in containerd. This issue could allow a remote attacker access to read-only copies of arbitrary files and directories on the host, which can be exploited with a specially-crafted image configuration...

7.5CVSS3.1AI score0.27392EPSS
Exploits4References4
RedhatCVE
RedhatCVE
•added 2022/03/15 7:56 p.m.•62 views

CVE-2022-0891

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...

7.1CVSS6AI score0.01542EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/12 11:23 p.m.•62 views

CVE-2022-22746

The Mozilla Foundation Security Advisory describes this flaw as: A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed. This bug only affects Thunderbird for Windows. Other operating systems are unaffected...

7.5CVSS7.1AI score0.0059EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/01/12 11:23 p.m.•62 views

CVE-2022-22743

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

7.5CVSS2.2AI score0.00643EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/12/22 5:55 p.m.•62 views

CVE-2021-23450

All versions of package dojo are vulnerable to Prototype Pollution via the setObject function...

9.8CVSS5.2AI score0.30367EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/11/19 5:24 p.m.•62 views

CVE-2021-43976

A denial of service flaw was found in mwifiexusbrecv in drivers/net/wireless/marvell/mwifiex/usb.c in the usb subsystem of the Linux kernel. This is due to a missing clean-up for a malfunctioning usb device with an unknown recvtype. Mitigation Mitigation for this issue is either not available or...

4.6CVSS6.3AI score0.00643EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/10/26 9:24 p.m.•62 views

CVE-2021-42739

A heap-based buffer overflow flaw was found in the Linux kernel FireDTV media card driver, where the user calls the CASENDMSG ioctl. This flaw allows a local user of the host machine to crash the system or escalate privileges on the system. The highest threat from this vulnerability is to...

6.7CVSS1.3AI score0.0044EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/10/12 9:9 a.m.•62 views

CVE-2021-20320

A flaw was found in s390 eBPF JIT in bpfjitinsn in arch/s390/net/bpfjitcomp.c in the Linux kernel. In this flaw, a local attacker with special user privilege can circumvent the verifier and may lead to a confidentiality problem. Mitigation Mitigation for this issue is either not available or the...

5.5CVSS1.8AI score0.00254EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/10/05 7:0 p.m.•62 views

CVE-2021-41103

A flaw was found in the containerd package. Containerd could allow a local authenticated attacker to traverse directories on the system, due to improper restricted permissions on the container root and plugin directories. This issue could allow an attacker to send a specially-crafted request...

7.8CVSS5.7AI score0.00482EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/24 7:13 a.m.•62 views

CVE-2021-3827

A flaw was found in keycloak, where the default ECP binding flow allows other authentication flows to be bypassed. By exploiting this behavior, an attacker can bypass the MFA authentication by sending a SOAP request with an AuthnRequest and Authorization header with the user's credentials. The...

6.8CVSS3AI score0.00874EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/06 5:22 p.m.•62 views

CVE-2021-39253

The ntfs3g package is susceptible to an input validation flaw. When processing a crafted NTFS image there is an improper check which leads to an out of bounds read. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.1AI score0.00423EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/01 5:25 a.m.•62 views

CVE-2021-3759

A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from th...

5.5CVSS1AI score0.00342EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/07/14 6:22 p.m.•62 views

CVE-2021-36373

When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected...

5.5CVSS2.6AI score0.02511EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/12 2:25 p.m.•62 views

CVE-2021-3642

A flaw was found in Wildfly Elytron where ScramServer may be susceptible to Timing Attack if enabled. The highest threat of this vulnerability is confidentiality...

5.3CVSS1.5AI score0.00846EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/06 3:18 p.m.•62 views

CVE-2021-3571

A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to...

7.1CVSS0.5AI score0.01895EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/01 5:22 p.m.•62 views

CVE-2021-29464

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The heap overflow is triggered when Exiv2 is used to write metadata into a crafted image file. An...

7.8CVSS4.5AI score0.01499EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/21 7:0 p.m.•62 views

CVE-2021-3612

An out-of-bounds memory write flaw was found in the Linux kernel’s joystick devices subsystem, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highest threat from this vulnerability is to...

7.8CVSS0.5AI score0.00687EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/18 5:29 p.m.•62 views

CVE-2021-32575

A flaw was found in Nomad. The bridge networking mode in HashiCorp Nomad and Nomad Enterprise allows ARP spoofing from other bridged tasks on the same node...

6.5CVSS1.3AI score0.00512EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/06/17 7:0 p.m.•62 views

CVE-2021-3608

A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. The issue occurs while handling a "PVRDMAREGDSRHIGH" write from the guest and may result in a crash of QEMU or cause undefined behavior due to the access of an uninitialized pointer. The highest threat from this...

6CVSS2.9AI score0.00363EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/14 2:14 p.m.•62 views

CVE-2021-31812

In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions...

5.5CVSS3.5AI score0.03054EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:25 a.m.•62 views

CVE-2021-3509

A flaw was found in the Red Hat Ceph Storage Dashboard. In response to CVE-2020-27839, the JWT token was moved from localStorage to an httpOnly cookie. However, token cookies are used in the body of the HTTP response for the documentation, which again makes it available to XSS. The greatest threa...

8.1CVSS0.8AI score0.02449EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/13 5:39 p.m.•62 views

CVE-2021-3541

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service...

6.5CVSS3AI score0.01861EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/22 6:37 p.m.•62 views

CVE-2021-28950

A denial of service in the kernel side of the FUSE functionality can allow a local system to create a denial of service. Mitigation As the FUSE module will be auto-loaded when required, its use can be disabled by preventing the module from loading with the following instructions: echo "install fu...

5.5CVSS0.8AI score0.0036EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/21 12:51 a.m.•62 views

CVE-2019-9517

A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's...

7.8CVSS0.7AI score0.27004EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/02/18 3:34 p.m.•62 views

CVE-2020-12362

A flaw was found in the Linux kernel. An integer overflow in the firmware for some IntelR Graphics Drivers may allow a privileged user to potentially enable an escalation of privilege via local access. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

7.8CVSS3.8AI score0.00359EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/12/02 4:15 p.m.•62 views

CVE-2020-11935

A flaw improperly managed inode reference counts in the vfsubdentryopen in the Linux kernel aufs subsystem was found in the way local user calls vfsubdentryopen method. A local user could use this flaw to crash the system...

1.7CVSS0.9AI score0.002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/04 2:3 p.m.•62 views

CVE-2020-25672

A memory leak in the Linux kernel’s NFC LLCP protocol implementation was found in the way a user triggers the llcpsockconnect function. This flaw allows a local user to starve the resources, causing a denial of service...

7.5CVSS7.1AI score0.03233EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/10/08 6:35 a.m.•62 views

CVE-2020-26541

A flaw was found in the Linux kernel in certs/blacklist.c, When signature entries for EFICERTX509GUID are contained in the Secure Boot Forbidden Signature Database, the entries are skipped. This can cause a security threat and breach system integrity, confidentiality and even lead to a denial of...

6.9CVSS1.4AI score0.00528EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/09/07 12:49 p.m.•62 views

CVE-2019-8764

A logic issue was addressed with improved state management. This issue is fixed in watchOS 6.1. Processing maliciously crafted web content may lead to universal cross site scripting...

6.1CVSS2.8AI score0.00974EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/08/18 7:29 p.m.•62 views

CVE-2020-8912

A flaw was found in the AWS S3 Crypto SDK where algorithm parameters for the data encryption key are not authenticated. This flaw allows attackers with S3 bucket write access to change the negotiated encryption algorithm, potentially providing viable brute force methods to recover plaintext. This...

2.1CVSS4.2AI score0.00231EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/05/29 1:25 p.m.•62 views

CVE-2020-13630

A use-after-free vulnerability was found in the SQLite FTS3 extension module in the way it implemented the snippet function. This flaw allows an attacker who can execute SQL statements to crash the application or potentially execute arbitrary code...

4.4CVSS7.6AI score0.0103EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/15 7:33 a.m.•62 views

CVE-2020-10709

A security flaw was found in Ansible Tower when requesting an OAuth2 token with an OAuth2 application. Ansible Tower uses the token to provide authentication. This flaw allows an attacker to obtain a refresh token that does not expire. The original token granted to the user still has access to...

7.1CVSS2.9AI score0.00272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 12:20 p.m.•62 views

CVE-2018-5968

A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by...

9.8CVSS3.6AI score0.49727EPSS
Exploits7References1
RedhatCVE
RedhatCVE
•added 2020/04/08 10:15 p.m.•62 views

CVE-2018-17972

An issue was discovered in the procpidstack function in fs/proc/base.c in the Linux kernel. An attacker with a local account can trick the stack unwinder code to leak stack contents to userspace. The fix allows only root to inspect the kernel stack of an arbitrary task...

5.5CVSS5.7AI score0.0035EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/12/10 8:48 p.m.•62 views

CVE-2019-19377

A flaw was found in the Linux kernel's implementation of the BTRFS file system. A local attacker, with the ability to mount a file system, can create a use-after-free memory fault after the file system has been unmounted. This may lead to memory corruption or privilege escalation. Mitigation As t...

7.8CVSS0.5AI score0.034EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/11/25 8:48 a.m.•62 views

CVE-2019-14897

A stack-based buffer overflow was found in the Linux kernel's Marvell WiFi chip driver. An attacker is able to cause a denial of service system crash or, possibly execute arbitrary code, when a STA works in IBSS mode allows connecting stations together without the use of an AP and connects to...

9.8CVSS5.5AI score0.02909EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/12 2:19 a.m.•62 views

CVE-2019-5747

An issue was discovered in BusyBox through 1.30.0. An out of bounds read in udhcp components consumed by the DHCP client, server, and/or relay might allow a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to assurance of a 4-byte...

7.5CVSS2.6AI score0.07905EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/10/08 10:15 a.m.•62 views

CVE-2017-13077

A new exploitation technique called key reinstallation attacks KRACKs affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used pairwise key PTK-TK during a...

8.1CVSS2AI score0.04575EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2019/10/07 11:8 a.m.•62 views

CVE-2019-15927

An out-of-bounds flaw was found in the ALSA usb-audio subsystem in the Linux kernel. An array boundary check was needed to restrict the array size; failing this can cause an out-of-bound access problem. Data confidentiality and integrity, as well as system availability, are all threats with this...

7.8CVSS1.3AI score0.00412EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/08/30 12:28 a.m.•62 views

CVE-2019-14271

A flaw was discovered in Docker if it is compiled with Go 1.11. During a docker cp command, the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container. An attacker could abuse this flaw by executing code with the root privileges...

9.8CVSS3.3AI score0.18828EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/08/21 5:22 a.m.•62 views

CVE-2019-10098

A vulnerability was discovered in Apache httpd, in modrewrite. Certain self-referential modrewrite rules could be fooled by encoded newlines, causing them to redirect to an unexpected location. An attacker could abuse this flaw in a phishing attack or as part of a client-side attack on browsers...

6.1CVSS0.9AI score0.73981EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2019/03/15 10:49 a.m.•62 views

CVE-2019-5420

A remote code execution vulnerability in development mode Rails 5.2.2.1, 6.0.0.beta3 can allow an attacker to guess the automatically generated development mode secret token. This secret token can be used in combination with other Rails internals to escalate to a remote code execution exploit...

9.8CVSS4.1AI score0.92144EPSS
Exploits13References4
RedhatCVE
RedhatCVE
•added 2019/02/07 6:50 p.m.•62 views

CVE-2019-7221

A use-after-free vulnerability was found in the way the Linux kernel's KVM hypervisor emulates a preemption timer for L2 guests when nested =1 virtualization is enabled. This high resolution timerhrtimer runs when a L2 guest is active. After VM exit, the syncvmcs12 timer object is stopped. The...

7.8CVSS2AI score0.00805EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/12/12 9:49 a.m.•62 views

CVE-2017-1000409

A buffer overflow in glibc 2.5 released on September 29, 2006 and can be triggered through the LDLIBRARYPATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366...

7.8CVSS5.1AI score0.02733EPSS
Exploits15References1
RedhatCVE
RedhatCVE
•added 2017/11/14 8:49 a.m.•62 views

CVE-2017-9096

The XML parsers in iText before 5.5.12 and 7.x before 7.0.3 do not disable external entities, which might allow remote attackers to conduct XML external entity XXE attacks via a crafted PDF...

8.8CVSS6.1AI score0.09902EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/02/07 9:22 a.m.•62 views

CVE-2017-5897

An issue was found in the Linux kernel ipv6 implementation of GRE tunnels which allows a remote attacker to trigger an out-of-bounds access. At this time we understand no trust barrier has been crossed and there is no security implications in this flaw...

9.8CVSS5.5AI score0.04953EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/10/20 7:47 a.m.•62 views

CVE-2016-8858

DISPUTED The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS5AI score0.29462EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/07/19 3:48 p.m.•62 views

CVE-2016-1000027

Pivotal Spring Framework 4.1.4 suffers from a potential remote code execution RCE issue if used for Java deserialization of untrusted data. Depending on how the library is implemented within a product, this issue may or not occur, and authentication may be required...

9.8CVSS5.6AI score0.32257EPSS
Exploits4References2
Total number of security vulnerabilities5000