Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2023/09/13 9:49 a.m.•58 views

CVE-2023-36793

A vulnerability was found in dotnet. This issue can lead to an out-of-bounds write when loading PDB type records in msdia140.dll used by Visual Studio. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria...

7.8CVSS7.5AI score0.01441EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/23 10:45 p.m.•58 views

CVE-2022-47695

An issue was discovered Binutils objdump before 2.39.3 allows attackers to cause a denial of service or other unspecified impacts via function bfdmachogetsyntheticsymtab in match-o.c...

7.8CVSS6.8AI score0.00461EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/08/07 7:48 a.m.•58 views

CVE-2023-4155

A flaw was found in KVM AMD Secure Encrypted Virtualization SEV in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple time...

5.3CVSS6.8AI score0.00159EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/07/27 6:47 a.m.•58 views

CVE-2023-39151

A flaw was found in Jenkins, where Jenkins weekly and LTS are vulnerable to Cross-site scripting caused by the improper validation of user-supplied input. A remote, authenticated attacker can inject malicious script into a web page, which would be executed in a victim's Web browser within the...

8CVSS6AI score0.00862EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/19 8:37 a.m.•58 views

CVE-2023-32001

A flaw was found in the curl package. This race condition modifies the behavior of symbolic link files in affected components which might be followed instead of overwritten when the condition is met, leading to undesired and potentially destructive behavior...

5.5CVSS6.8AI score
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/10 6:17 p.m.•58 views

CVE-2023-31248

A use-after-free flaw was found in the Linux kernel's Netfilter module in net/netfilter/nftablesapi.c in nftchainlookupbyid. This flaw allows a local attacker to cause a local privilege escalation issue due to a missing cleanup. Mitigation To mitigate this issue, it is possible to prevent the...

7.8CVSS7.5AI score0.02033EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2023/06/14 5:49 a.m.•58 views

CVE-2023-33128

A vulnerability was found in dotnet. This issue may allow remote code execution via source generators that can lead to a crash due to unmanaged heap corruption...

7.3CVSS8AI score0.00999EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/05/18 4:27 a.m.•58 views

CVE-2023-32082

A flaw was found in etcd. Affected versions of etcd allow a remote, authenticated attacker to use the LeaseTimeToLive API to obtain sensitive information...

3.1CVSS5.9AI score0.00744EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/04/05 6:18 a.m.•58 views

CVE-2023-28879

In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then...

8.4CVSS9.4AI score0.06341EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2023/03/19 2:12 p.m.•58 views

CVE-2023-28120

A Cross-Site-Scripting vulnerability was found in rubygem ActiveSupport. If the new bytesplice method is called on a SafeBuffer with untrusted user input, malicious code could be executed. Mitigation Avoid calling bytesplice on a SafeBuffer htmlsafe string with untrusted user input...

6.1CVSS2.5AI score0.00907EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/06 8:59 a.m.•58 views

CVE-2023-1195

A use-after-free flaw was found in reconnsetipaddrfromhostname in fs/cifs/connect.c in the Linux kernel. The issue occurs when it forgets to set the free pointer server-hostname to NULL, leading to an invalid pointer request. Mitigation Mitigation for this issue is either not available or the...

5.5CVSS2AI score0.00208EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/27 2:59 p.m.•58 views

CVE-2022-20566

A use-after-free flaw was found in the Linux kernel's Bluetooth functionality. A user could trigger a race condition while closing the connection. This issue may allow a local user to crash or potentially escalate their privileges on the system. Mitigation The only way to mitigate these...

7.8CVSS0.9AI score0.00165EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/07 5:27 p.m.•58 views

CVE-2022-4203

A flaw was found in Open SSL. A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification, and requires either a CA to have signed the malicious certificate or for the...

4.9CVSS6.3AI score0.01481EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/24 8:5 a.m.•58 views

CVE-2022-4254

A vulnerability was found in SSSD, in the libssscertmap functionality. PKINIT enables a client to authenticate to the KDC using an X.509 certificate and the corresponding private key, rather than a passphrase or keytab. FreeIPA uses mapping rules to map a certificate presented during a PKINIT...

8.8CVSS8.8AI score0.0095EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/01/18 7:36 p.m.•58 views

CVE-2022-44034

An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/scr24xcs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open, aka a race condition between scr24xopen and scr24xremove...

6.4CVSS4.3AI score0.003EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/16 10:8 a.m.•60 views

CVE-2022-3543

A flaw was found in unixsockdestructor/unixreleasesock in net/unix/afunix.c in the BPF component in the Linux Kernel. This issue may lead to a memory leak problem. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the Red Hat Product Securit...

5.5CVSS1.6AI score0.0026EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/12/21 10:1 p.m.•59 views

CVE-2022-46364

A SSRF vulnerability was found in Apache CXF. This issue occurs when parsing the href attribute of XOP:Include in MTOM requests, allowing an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type...

9.8CVSS3.7AI score0.0193EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2022/12/19 2:35 p.m.•58 views

CVE-2021-33640

After tarclose, libtar.c releases the memory pointed to by pointer t. After tarclose is called in the list function, it continues to use pointer t: freelonglinklongnamet-thbuf . As a result, the released memory is used use-after-free...

6.2CVSS1.6AI score0.01431EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/11/01 4:26 p.m.•58 views

CVE-2022-3786

A stack-based buffer overflow was found in the way OpenSSL processes X.509 certificates with a specially crafted email address field. This issue could cause a server or a client application compiled with OpenSSL to crash or possibly execute remote code when trying to process the malicious...

7.5CVSS4.3AI score0.92488EPSS
Exploits2References5
RedhatCVE
RedhatCVE
•added 2022/10/31 5:26 a.m.•58 views

CVE-2022-3725

A vulnerability was found in Wireshark. This flaw causes a crash in the OPUS protocol dissector in Wireshark, leading to a denial of service via packet injection or a crafted capture file...

7.5CVSS2.8AI score0.008EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/08/16 9:38 a.m.•58 views

CVE-2022-30580

A flaw was found in the os/exec golang package. This issue occurs when invoking different Cmd methods and the Cmd.Path is unset. This could lead to a command injection, allowing an attacker to execute any binaries in the working directory...

7.8CVSS5.7AI score0.00578EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/08/16 9:8 a.m.•58 views

CVE-2022-2835

A flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of ..svc. Mitigation Consider adding the svc namespace to the DNS operator to prevent a low-privileged user from creating it. Alternatively...

4.4CVSS2.7AI score0.00174EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/07/31 5:44 p.m.•58 views

CVE-2020-36558

A NULL pointer dereference flaw was found in the Linux kernel’s Virtual Terminal subsystem was found in how a user calls the VTRESIZEX ioctl. This flaw allows a local user to crash the system...

5.1CVSS2.1AI score0.00298EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/07/21 7:45 a.m.•58 views

CVE-2021-46828

A denial of service DoS vulnerability was found in libtirpc. This flaw allows a remote attacker to exhaust the file descriptors of a process that uses libtirpc due to mishandling idle TCP connections. This issue leads to a svcrun infinite loop without accepting new connections...

7.5CVSS4.2AI score0.02088EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/07/18 4:59 p.m.•58 views

CVE-2022-24724

cmark-gfm is GitHub's extended version of the C reference implementation of CommonMark. Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing table.c:rowfromstring may lead to heap memory corruption when parsing tables who's marker rows contain mor...

9.8CVSS4.2AI score0.04192EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2022/07/15 7:6 a.m.•58 views

CVE-2022-28693

A flaw was found in hw. The unprotected alternative channel of return branch target prediction in some IntelR Processors may allow an authorized user to enable information disclosure via local access...

4.7CVSS3.5AI score0.00165EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/07/07 4:12 p.m.•58 views

CVE-2022-1902

A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifiers from the GraphQL API, revealing secrets that can escalate their privileges...

8.8CVSS3.2AI score0.01154EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/07/05 3:6 p.m.•58 views

CVE-2022-2318

There are use-after-free vulnerabilities caused by timer handler in net/rose/rosetimer.c of linux that allow attackers to crash linux kernel without any privileges...

5.5CVSS4.7AI score0.00419EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/07/01 5:5 a.m.•58 views

CVE-2022-2274

The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X8664 CPUs supporting the AVX512IFMA instructions. This issue makes the RSA implementation with 2048 bit private keys incorrect on such machines and memory corruption will happen during the computation. As a...

10CVSS3.4AI score0.44881EPSS
Exploits3References5
RedhatCVE
RedhatCVE
•added 2022/06/30 5:56 p.m.•58 views

CVE-2022-32549

A flaw was found in Apache Sling Commons Log. This flaw allows an attacker to benefit from the flaw and forge logs, allowing cover tracks and potentially corrupting log files...

5.3CVSS3.9AI score0.0222EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/06/08 4:9 p.m.•58 views

CVE-2022-32547

A flaw was found in ImageMagick, where there is a load of a misaligned address for type 'double,' which requires 8-byte alignment, and for type 'float,' which requires 4-byte alignment at MagickCore/property.c. Whenever ImageMagick processes crafted or untrusted input, this causes a negative impa...

7.8CVSS2.8AI score0.01327EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/06/07 2:29 a.m.•58 views

CVE-2022-26700

A flaw was found in webkitgtk. The vulnerability occurs due to improper input validation, leading to memory corruption. This flaw allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, or arbitrary code execution...

8.8CVSS6.3AI score0.01262EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/24 8:13 a.m.•58 views

CVE-2022-29163

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 22.2.6 and 23.0.3, a user can create a link that is not password protected even if the administrator requires links to be password protected. Versions 22.2.6 and 23.0.3 contain a pat...

4.3CVSS3.9AI score0.01015EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2022/05/20 11:14 p.m.•58 views

CVE-2022-30596

A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing to prevent a stored XSS risk...

2.9AI score0.00828EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2022/05/18 11:1 p.m.•58 views

CVE-2022-24904

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Argo CD starting with version 0.7.0 and prior to versions 2.1.15m 2.2.9, and 2.3.4 is vulnerable to a symlink following bug allowing a malicious user with repository write access to leak sensitive files from Argo CD's...

4.3CVSS1.9AI score0.01051EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/17 4:10 p.m.•58 views

CVE-2022-22976

A flaw was found in Spring Framework. The encoder does not perform any salt rounds when using the BCrypt class with the maximum work factor 31 due to an integer overflow error...

5.3CVSS2.8AI score0.02139EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/05/11 7:37 a.m.•58 views

CVE-2022-30115

A vulnerability was found in curl. This issue occurs because when using its HTTP Strict Transport SecurityHSTS support, it can instruct curl to use HTTPS directly instead of using an insecure clear text HTTP step even when HTTP is provided in the URL. This flaw leads to a clear text transmission ...

5.3CVSS0.01118EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/04/20 5:0 a.m.•58 views

CVE-2022-25648

A flaw was found in ruby-git, where the package is vulnerable to command injection via the git argument. This flaw allows an attacker to set additional flags, which leads to performing command injections...

9.8CVSS4.1AI score0.04871EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/03/31 8:48 p.m.•58 views

CVE-2022-27649

A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was found in Moby Docker Engine, where containers were started incorrectly with non-empty inheritable Linux process capabilities. This flaw allows an attacker with access to...

7.5CVSS4.9AI score0.01441EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/03/22 5:35 p.m.•58 views

CVE-2022-1025

A privilege escalation flaw was found in ArgoCD. This flaw allows a malicious user who has push access to an application's source git or Helm repository, or sync and override access, to perform actions they are not authorized to do. For example, if the attacker has update or delete access, they c...

9CVSS2.8AI score0.01114EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/03 9:51 p.m.•58 views

CVE-2022-25634

Qt through 5.15.8 and 6.x through 6.2.3 can load system library files from an unintended working directory...

7.5CVSS2AI score0.0193EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/02/07 8:48 a.m.•58 views

CVE-2022-23707

A Cross-Site Scripting XSS vulnerability was found in Kibana index patterns. Using this vulnerability, an authenticated user with permission to create index patterns can inject malicious javascript into the index pattern, which could execute against other users...

8.1CVSS2.9AI score0.00527EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/01/18 5:32 p.m.•58 views

CVE-2022-23218

A stack based buffer-overflow vulnerability was found in the deprecated compatibility function svcunixcreate in the sunrpc's svcunix.c module of the GNU C Library aka glibc through 2.34. This vulnerability copies its path argument onto the stack without validating its length, which may result in ...

9.8CVSS4.1AI score0.04729EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/13 4:15 p.m.•58 views

CVE-2021-43612

An out-of-bounds read vulnerability is present in lldpd. An attacker on the same network as the vulnerable system may use this vulnerability to leak memory data from the application or crash it by sending shorter SONMP packets than what is expected...

7.5CVSS2.1AI score0.01142EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/12/23 8:24 p.m.•58 views

CVE-2021-44420

In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for URLs with trailing newlines could bypass upstream access control based on URL paths...

7.5CVSS0.7AI score0.02295EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/12/16 10:55 a.m.•58 views

CVE-2021-31566

An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. ...

7.8CVSS3.5AI score0.00366EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/10/05 5:46 p.m.•58 views

CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access. Mitigation Mitigation for this issue is either not available or the currently available...

7.8CVSS1.8AI score0.01476EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2021/08/18 1:45 p.m.•58 views

CVE-2021-39242

haproxy was found to be vulnerable to HTTP host header attack: This problem creates a scenario in which it's possible to drop the Host header and use the authority only after forwarding to a second http2 layer, possibly causing two differing values of Host at a different stage. The highest threat...

7.5CVSS0.4AI score0.02341EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/08/18 7:5 a.m.•58 views

CVE-2021-3716

A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS encryption boundary. A MitM attacker could use this flaw to inject a plaintext NBDOPTSTRUCTUREDREPLY before proxying everything else a client sends to the server, potentially leading the client to terminat...

3.5CVSS0.9AI score0.00573EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/08/10 9:21 p.m.•58 views

CVE-2021-38198

A flaw was found in the Linux kernel, where it incorrectly computes the access permissions of a shadow page. This issue leads to a missing guest protection page fault. Mitigation Do not disable hardware-assisted paging also known as nested paging and Second Level Address Translation on your hosts...

6.4CVSS1.6AI score0.00469EPSS
Exploits1References3
Total number of security vulnerabilities5000