Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2022/08/19 4:38 a.m.•62 views

CVE-2022-30952

Jenkins Pipeline SCM API for Blue Ocean Plugin 1.25.3 and earlier allows attackers with Job/Configure permission to access credentials with attacker-specified IDs stored in the private per-user credentials stores of any attacker-specified user in Jenkins...

6.5CVSS4.6AI score0.00864EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/06/08 8:2 p.m.•62 views

CVE-2022-30556

A flaw was found in the modlua module of httpd. The data returned by the wsread function may point past the end of the storage allocated for the buffer, resulting in information disclosure. Mitigation Disabling modlua and restarting httpd will mitigate this flaw...

7.5CVSS0.3AI score0.04687EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/06/01 10:22 a.m.•62 views

CVE-2022-31621

MariaDB Server before 10.7 is vulnerable to Denial of Service. In extra/mariabackup/dsxbstream.cc, when an error occurs streamctxt-destfile == NULL while executing the method xbstreamopen, the held lock is not released correctly, which allows local users to trigger a denial of service due to the...

5.5CVSS5.3AI score0.00213EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/05/16 2:55 p.m.•62 views

CVE-2022-21136

A flaw was found in hw. Improper input validation for some IntelR XeonR processors may allow a privileged user to enable a denial of service via local access. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security...

5.5CVSS5.1AI score0.00259EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/09 4:56 p.m.•62 views

CVE-2022-1632

An Improper Certificate Validation attack was found in Openshift. A re-encrypt Route with destinationCACertificate explicitly set to the default serviceCA skips internal Service TLS certificate validation. This flaw allows an attacker to exploit an invalid certificate, resulting in a loss of...

6.5CVSS3.7AI score0.00353EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/04/05 9:52 a.m.•62 views

CVE-2022-26280

An out-of-bounds read flaw was found in libarchive. This flaw allows an attacker who can supply a specially crafted zip file to libarchive to cause an out-of-bounds read in programs linked with libarchive, using the LZMA zip functionality. The consequences depend on the specific program linked wi...

6.5CVSS1.6AI score0.01877EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/19 11:40 p.m.•62 views

CVE-2021-44906

An Uncontrolled Resource Consumption flaw was found in minimist. This flaw allows an attacker to trick the library into adding or modifying the properties of Object.prototype, using a constructor or proto payload, resulting in prototype pollution and loss of confidentiality, availability, and...

9.8CVSS4.7AI score0.04581EPSS
Exploits3References4
RedhatCVE
RedhatCVE
•added 2022/03/17 1:44 p.m.•62 views

CVE-2022-23648

An information leak was discovered in containerd. This issue could allow a remote attacker access to read-only copies of arbitrary files and directories on the host, which can be exploited with a specially-crafted image configuration...

7.5CVSS3.1AI score0.27392EPSS
Exploits4References4
RedhatCVE
RedhatCVE
•added 2022/03/15 7:56 p.m.•62 views

CVE-2022-0891

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other...

7.1CVSS6AI score0.01542EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/14 9:17 a.m.•62 views

CVE-2022-26966

An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device...

5.5CVSS4.7AI score0.00338EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/27 6:43 p.m.•62 views

CVE-2022-0391

A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator URL strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n' in the URL path. This flaw allows an...

7.5CVSS7.6AI score0.08325EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/12 11:23 p.m.•62 views

CVE-2022-22746

The Mozilla Foundation Security Advisory describes this flaw as: A race condition could have allowed bypassing the fullscreen notification which could have lead to a fullscreen window spoof being unnoticed. This bug only affects Thunderbird for Windows. Other operating systems are unaffected...

7.5CVSS7.1AI score0.0059EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/01/12 11:23 p.m.•62 views

CVE-2022-22743

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: When navigating from inside an iframe while requesting full screen access, an attacker-controlled tab could have made the browser unable to leave full screen mode...

7.5CVSS2.2AI score0.00643EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/12/16 6:19 p.m.•62 views

CVE-2021-3929

A DMA reentrancy issue was found in the NVM Express Controller NVME emulation in QEMU. This CVE is similar to CVE-2021-3750 and, just like it, when the reentrancy write triggers the reset function nvmectrlreset, data structs will be freed leading to a use-after-free issue. A malicious guest could...

8.2CVSS3.1AI score0.00643EPSS
Exploits3References5
RedhatCVE
RedhatCVE
•added 2021/10/20 9:12 p.m.•62 views

CVE-2020-13974

A flaw integer overflow in the Linux kernel's virtual terminal keyboard driver was found in the way the user sends some specific keyboard code multiple times. A local user could use this flaw to crash the system or possibly escalate their privileges on the system. Mitigation Mitigation for this...

7.8CVSS0.9AI score0.0057EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/10/12 9:9 a.m.•62 views

CVE-2021-20320

A flaw was found in s390 eBPF JIT in bpfjitinsn in arch/s390/net/bpfjitcomp.c in the Linux kernel. In this flaw, a local attacker with special user privilege can circumvent the verifier and may lead to a confidentiality problem. Mitigation Mitigation for this issue is either not available or the...

5.5CVSS1.8AI score0.00254EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/20 7:13 p.m.•62 views

CVE-2021-39293

A vulnerability was found in archive/zip of the Go standard library. Applications written in Go can panic or potentially exhaust system memory when parsing malformed ZIP files. An attacker capable of submitting a crafted ZIP file to a Go application using archive/zip to process that file could...

7.5CVSS2.9AI score0.06934EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/09/15 6:52 a.m.•62 views

CVE-2021-22945

A flaw was found in libcurl. When sending data to an MQTT server could in some situations lead to libcurl using already freed memory and then try to free it again. The highest threat from this vulnerability is to data confidentiality as well as system availability...

9.1CVSS2.2AI score0.06216EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/09/01 5:25 a.m.•62 views

CVE-2021-3759

A memory overflow vulnerability was found in the Linux kernel’s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from th...

5.5CVSS1AI score0.00345EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/17 7:10 p.m.•62 views

CVE-2021-38593

Qt 5.x before 5.15.6 and 6.x through 6.1.2 has an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

7.5CVSS1.9AI score0.0306EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/10 9:50 p.m.•62 views

CVE-2021-2389

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server...

7.1CVSS2AI score0.08216EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/07/29 4:20 p.m.•62 views

CVE-2021-36386

A flaw was found in fetchmail. The flaw lies in how fetchmail when running in verbose mode using the -v flag tries to log long messages that are created from long headers. An attacker could potentially use this flaw to cause a Denial of Service attack or crash. The highest threat from this...

7.5CVSS1.9AI score0.03003EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/06/14 2:14 p.m.•62 views

CVE-2021-31812

In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions...

5.5CVSS3.5AI score0.03054EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/10 6:47 p.m.•62 views

CVE-2021-3588

The clifeatreadcb function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading...

3.3CVSS3.4AI score0.0045EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/19 12:27 a.m.•62 views

CVE-2021-32029

A flaw was found in postgresql. Using an UPDATE ... RETURNING command on a purpose-crafted table, an authenticated database user could read arbitrary bytes of server memory. The highest threat from this vulnerability is to data confidentiality...

6.5CVSS2.7AI score0.01398EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:25 a.m.•62 views

CVE-2021-22116

A flaw was found in rabbitmq-server, where insufficient input validation in the AMQP 1.0 client connection endpoint could allow a denial of service. The highest threat from this vulnerability is to system availability...

7.5CVSS3.2AI score0.01387EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:25 a.m.•62 views

CVE-2021-3509

A flaw was found in the Red Hat Ceph Storage Dashboard. In response to CVE-2020-27839, the JWT token was moved from localStorage to an httpOnly cookie. However, token cookies are used in the body of the HTTP response for the documentation, which again makes it available to XSS. The greatest threa...

8.1CVSS0.8AI score0.02449EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/13 5:39 p.m.•62 views

CVE-2021-3541

A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service...

6.5CVSS3AI score0.01861EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/21 12:51 a.m.•62 views

CVE-2019-9517

A vulnerability was found in HTTP/2. An attacker can open a HTTP/2 window so the peer can send without constraint. The TCP window remains closed so the peer cannot write the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the server's...

7.8CVSS0.7AI score0.27004EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/02/18 3:34 p.m.•62 views

CVE-2020-12362

A flaw was found in the Linux kernel. An integer overflow in the firmware for some IntelR Graphics Drivers may allow a privileged user to potentially enable an escalation of privilege via local access. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

7.8CVSS3.8AI score0.00359EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/12/08 4:10 p.m.•62 views

CVE-2020-1971

A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERALNAMEcmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability...

5.9CVSS1.6AI score0.06968EPSS
Exploits3References4
RedhatCVE
RedhatCVE
•added 2020/12/02 4:15 p.m.•62 views

CVE-2020-11935

A flaw improperly managed inode reference counts in the vfsubdentryopen in the Linux kernel aufs subsystem was found in the way local user calls vfsubdentryopen method. A local user could use this flaw to crash the system...

1.7CVSS0.9AI score0.002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/07/13 7:12 a.m.•62 views

CVE-2020-15104

An improper certificate validation vulnerability was found in envoyproxy/envoy, when externally created certificates with wildcards in the DNS Subject Alternative Name are used. This flaw allows an attacker to subvert the envoy filter or destination rules to access restricted resources. The highe...

5.5CVSS6.1AI score0.00252EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/05/29 1:25 p.m.•62 views

CVE-2020-13630

A use-after-free vulnerability was found in the SQLite FTS3 extension module in the way it implemented the snippet function. This flaw allows an attacker who can execute SQL statements to crash the application or potentially execute arbitrary code...

4.4CVSS7.6AI score0.0103EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/15 7:33 a.m.•62 views

CVE-2020-10709

A security flaw was found in Ansible Tower when requesting an OAuth2 token with an OAuth2 application. Ansible Tower uses the token to provide authentication. This flaw allows an attacker to obtain a refresh token that does not expire. The original token granted to the user still has access to...

7.1CVSS2.9AI score0.00272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 12:20 p.m.•62 views

CVE-2018-5968

A deserialization flaw was discovered in the jackson-databind that could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. This issue extends the previous flaws CVE-2017-7525 and CVE-2017-17485 by...

9.8CVSS3.6AI score0.49727EPSS
Exploits7References1
RedhatCVE
RedhatCVE
•added 2020/04/09 10:9 a.m.•62 views

CVE-2019-17531

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled either globally or for a specific property for an externally exposed JSON endpoint and the service has the apache-log4j-extra version 1.2.x jar in the classpath, and an...

9.8CVSS2.5AI score0.05329EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 9:20 a.m.•62 views

CVE-2017-9076

The IPv6 DCCP implementation in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. An unprivileged local user could use this flaw to induce kernel memo...

7.8CVSS3.7AI score0.01372EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2020/04/04 5:14 a.m.•62 views

CVE-2017-7525

A deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper. Mitigation Mitigation to this problem is to not trigger polymorphic desrializatio...

9.8CVSS0.9AI score0.37925EPSS
Exploits7References1
RedhatCVE
RedhatCVE
•added 2020/03/23 8:1 p.m.•62 views

CVE-2020-9546

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS3.5AI score0.04613EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/05 4:6 a.m.•62 views

CVE-2019-18805

A flaw was reported in the Linux kernel's TCP subsystem while calculating a packet round trip time, when a sysctl parameter /proc/sys/net/ipv4/tcpminrttwlen is set incorrectly. This causes an integer overflow which can lead to a denial Of service DOS attack. Mitigation This flaw can be mitigated ...

9.8CVSS2.9AI score0.03431EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/10 8:48 p.m.•62 views

CVE-2019-19377

A flaw was found in the Linux kernel's implementation of the BTRFS file system. A local attacker, with the ability to mount a file system, can create a use-after-free memory fault after the file system has been unmounted. This may lead to memory corruption or privilege escalation. Mitigation As t...

7.8CVSS0.5AI score0.034EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/11/12 9:0 a.m.•62 views

CVE-2019-11479

An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size MSS of a TCP connection was set to low values, such as 48 bytes, it can leave as little as 8 bytes for the user data, which significantly increas...

7.5CVSS6.4AI score0.9166EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2019/10/31 4:26 p.m.•62 views

CVE-2017-11176

A use-after-free flaw was found in the Netlink functionality of the Linux kernel networking subsystem. Due to the insufficient cleanup in the mqnotify function, a local attacker could potentially use this flaw to escalate their privileges on the system...

7.8CVSS3.1AI score0.03631EPSS
Exploits8References1
RedhatCVE
RedhatCVE
•added 2019/10/12 2:19 a.m.•62 views

CVE-2019-5747

An issue was discovered in BusyBox through 1.30.0. An out of bounds read in udhcp components consumed by the DHCP client, server, and/or relay might allow a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to assurance of a 4-byte...

7.5CVSS2.6AI score0.07694EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/10/08 10:15 a.m.•62 views

CVE-2017-13077

A new exploitation technique called key reinstallation attacks KRACKs affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used pairwise key PTK-TK during a...

8.1CVSS2AI score0.04575EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2019/08/23 4:52 a.m.•62 views

CVE-2019-9851

LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. Protection was added, to address CVE-2019-9848, to block calling LibreLogo from document event script handers...

9.8CVSS1.8AI score0.78347EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2019/03/15 10:49 a.m.•62 views

CVE-2019-5420

A remote code execution vulnerability in development mode Rails 5.2.2.1, 6.0.0.beta3 can allow an attacker to guess the automatically generated development mode secret token. This secret token can be used in combination with other Rails internals to escalate to a remote code execution exploit...

9.8CVSS4.1AI score0.92144EPSS
Exploits13References4
RedhatCVE
RedhatCVE
•added 2019/02/07 6:50 p.m.•62 views

CVE-2019-7221

A use-after-free vulnerability was found in the way the Linux kernel's KVM hypervisor emulates a preemption timer for L2 guests when nested =1 virtualization is enabled. This high resolution timerhrtimer runs when a L2 guest is active. After VM exit, the syncvmcs12 timer object is stopped. The...

7.8CVSS2AI score0.00805EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2018/01/03 10:49 p.m.•62 views

CVE-2017-5754

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

5.6CVSS5.7AI score0.84172EPSS
Exploits3References2
Total number of security vulnerabilities5000