Lucene search
K
RedhatcveMost viewed

206360 matches found

RedhatCVE
RedhatCVE
added 2022/08/16 11:38 p.m.56 views

CVE-2022-2867

A flaw was found in libtiff's tiffcrop utility that has a uint32t underflow that can lead to an out-of-bounds read and write. This flaw allows an attacker who supplies a crafted file to tiffcrop likely via tricking a user to run tiffcrop on it with certain parametersto cause a crash or, in some...

5.5CVSS4.7AI score0.003EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/08/11 8:38 a.m.56 views

CVE-2022-2764

A flaw was found in Undertow with EJB invocations. This flaw allows an attacker to generate a valid HTTP request and send it to the server on an established connection after removing the LASTCHUNK from the bytes, causing a denial of service...

4.2CVSS1.9AI score0.00787EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/08/11 5:16 a.m.56 views

CVE-2022-37416

Ittiam libmpeg2 before 2022-07-27 uses memcpy with overlapping memory blocks in impeg2mcfullxfully8x8...

6.5CVSS2AI score0.00792EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/08/02 1:40 p.m.56 views

CVE-2022-29154

A flaw was found in rsync that is triggered by a victim rsync user/client connecting to a malicious rsync server. The server can copy and overwrite arbitrary files in the client's rsync target directory and subdirectories. This flaw allows a malicious server, or in some cases, another attacker wh...

7.4CVSS2.5AI score0.0165EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/07/18 6:12 p.m.56 views

CVE-2022-2255

A vulnerability was found in modwsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker to pass the X-Client-IP header to the target WSGI application because the condition to remove it is missing...

7.3CVSS3.5AI score0.0069EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/07/11 3:46 p.m.56 views

CVE-2022-32081

MariaDB v10.4 to v10.7 was discovered to contain an use-after-poison in prepareinplaceaddvirtual at /storage/innobase/handler/handler0alter.cc...

7.5CVSS2.1AI score0.0193EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/07/04 2:36 p.m.56 views

CVE-2022-34265

A flaw was found in Django. The Trunc and Extract database functions are subject to SQL injection if untrusted data is used as a kind/lookupname value...

9.8CVSS1.6AI score0.73274EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2022/06/09 10:57 p.m.56 views

CVE-2022-29224

A flaw was found in Envoy. This flaw allows an attacker who controls an upstream host and also controls service discovery of that host via DNS, the EDS API, etc. to crash Envoy by forcing the removal of the host from service discovery and then failing the gRPC health check request. This issue...

5.9CVSS1.6AI score0.00948EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/07 5:19 p.m.56 views

CVE-2022-28734

A flaw was found in grub2 when handling split HTTP headers. While processing a split HTTP header, grub2 wrongly advances its control pointer to the internal buffer by one position, which can lead to an out-of-bounds write. This flaw allows an attacker to leverage this issue by crafting a maliciou...

8.1CVSS1.2AI score0.01131EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/06/07 2:30 a.m.56 views

CVE-2022-30785

A vulnerability was found in NTFS-3G. A file handle created in fuselibopendir and later used in fuselibreaddir allows out-of-bounds read/write operations...

7.2CVSS1.5AI score0.00392EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/07 2:30 a.m.56 views

CVE-2022-30783

A vulnerability was found in NTFS-3G. An invalid return code in fusekernmount allows libfuse-lite protocol traffic between NTFS-3G and the kernel to be intercepted...

6.7CVSS3.4AI score0.00417EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/07 2:29 a.m.56 views

CVE-2022-26717

A flaw was found in webkitgtk. Due to improper input validation, the issue occurs, leading to a use-after-free vulnerability. This flaw allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, or arbitrary code execution...

8.8CVSS5.7AI score0.01424EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/31 2:53 p.m.56 views

CVE-2022-31740

The Mozilla Foundation Security Advisory describes this flaw as: On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash...

8.8CVSS3AI score0.00651EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/05/25 2:32 p.m.56 views

CVE-2022-1865

No description is available for this CVE...

1.3AI score0.00475EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/05/21 12:19 a.m.56 views

CVE-2017-2906

An exploitable integer overflow exists in the animation playing functionality of the Blender open-source 3d creation suite version 2.78c. A specially created '.avi' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...

8.8CVSS6.1AI score0.01866EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2022/05/21 12:16 a.m.56 views

CVE-2021-21204

Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS2.3AI score0.01555EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/05/21 12:9 a.m.56 views

CVE-2022-22935

An issue was discovered in SaltStack Salt in versions before 3002.8, 3003.4, 3004.1. A minion authentication denial of service can cause a MiTM attacker to force a minion process to stop by impersonating a master...

4.3CVSS4.5AI score0.01586EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/05/21 12:9 a.m.56 views

CVE-2022-23038

Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Several Linux PV device frontends are using the grant table interfaces for removing access rights of the...

7CVSS0.7AI score0.00351EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/05/20 10:39 p.m.56 views

CVE-2019-6799

An issue was discovered in phpMyAdmin before 4.8.5. When the AllowArbitraryServer configuration setting is set to true, with the use of a rogue MySQL server, an attacker can read any file on the server that the web server's user can access. This is related to the mysql.allowlocalinfile PHP...

9.8CVSS3.1AI score0.15586EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/05/14 11:39 a.m.56 views

CVE-2019-20330

FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking. Mitigation The following conditions are needed for an exploit, we recommend avoiding all if possible: Deserialization from sources you do not control enableDefaultTyping @JsonTypeInfo using id.CLASS or...

9.8CVSS3.1AI score0.0864EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/11 8:1 a.m.56 views

CVE-2022-27780

A vulnerability was found in curl. This issue occurs because the curl URL parser wrongly accepts percent-encoded URL separators like '/' when decoding the hostname part of a URL, making it a different URL using the wrong hostname when it is later retrieved. This flaw allows a malicious actor to...

7.5CVSS2.9AI score0.02187EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/05/07 2:1 p.m.56 views

CVE-2021-39241

haproxy has an input validation flaw that could allow a remote attacker to bypass implemented security restrictions. An HTTP method name may contain a space followed by the name of a protected resource. Given this, It is possible that an server would interpret this as a request for that protected...

7.5CVSS1.6AI score0.0177EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/03/31 8:43 p.m.56 views

CVE-2021-33061

A denial of service flaw was found in the Linux kernel due to insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters. This flaw allows a locally authenticated user to potentially cause a denial of service. The highest threat from this vulnerability is to syste...

5.5CVSS3.1AI score0.00283EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/03/09 1:58 p.m.56 views

CVE-2021-3558

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

6.7AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/02/17 4:52 p.m.56 views

CVE-2022-25183

A flaw was found in Jenkins. The Pipeline: Shared Groovy Libraries plugin uses the names of Pipeline libraries to create cache directories without any sanitization. This flaw allows attackers with item/configure permission to execute arbitrary code in the context of the Jenkins controller JVM,...

8.8CVSS4AI score0.01513EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/02/17 4:38 p.m.56 views

CVE-2022-25176

A flaw was found in Jenkins. The Pipeline: Groovy Plugin follows symbolic links to locations outside of the checkout directory for the configured SCM when reading the script file typically Jenkinsfile for Pipelines. This flaw allows attackers who can configure Pipelines to read arbitrary files on...

6.5CVSS3.2AI score0.01715EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/01/18 9:49 p.m.56 views

CVE-2022-21294

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability...

5.3CVSS4.7AI score0.0335EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/01/12 11:22 p.m.56 views

CVE-2021-3979

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks...

6.5CVSS1.4AI score0.00436EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/01/10 1:24 p.m.56 views

CVE-2021-4203

A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak internal kernel information. Mitigation Mitigation for this...

6.8CVSS1.3AI score0.01747EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2021/12/16 10:58 a.m.56 views

CVE-2021-23177

An improper link resolution flaw while extracting an archive can lead to changing the access control list ACL of the target of the link. An attacker may provide a malicious archive to a victim user, who would trigger this flaw when trying to extract the archive. A local attacker may use this flaw...

7.8CVSS3.2AI score0.00367EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/12/10 6:24 p.m.56 views

CVE-2018-25020

A buffer overflow flaw in the Linux kernel BPF subsystem was found in the way users run BPF with long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions. A local user could use this flaw to crash the system or escalate their...

7.8CVSS1.4AI score0.00505EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2021/11/15 6:44 p.m.56 views

CVE-2021-41092

A confidential data leak vulnerability was found in Docker CLI. The execution of docker login to a private registry may send provided credentials in a misconfigured docker credentials store to the registry-1.docker.io rather than the specified private registry. This flaw allows an attacker to ste...

7.5CVSS7.3AI score0.01536EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2021/10/28 9:10 p.m.56 views

CVE-2021-20324

A flaw was found in WildFly Elytron. A variation to the use of a session fixation exploit when using Undertow was found despite Undertow switching the session ID after authentication. The highest threat from this vulnerability is to data confidentiality and integrity. Mitigation This attack is...

4.2CVSS1.5AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2021/10/22 5:14 p.m.56 views

CVE-2021-42771

A flaw was found in python-babel. A path traversal vulnerability was found in how locale data files are checked and loaded within python-babel, allowing a local attacker to trick an application that uses python-babel to load a file outside of the intended locale directory. The highest threat from...

7.8CVSS4.4AI score0.00716EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/10/05 6:58 p.m.56 views

CVE-2021-32626

A heap buffer overflow was found in redis. Specially crafted Lua scripts executing in Redis cause the heap-based Lua stack to overflow due to incomplete checks for this condition. This flaw allows a remote attacker to corrupt the heap and potentially trigger remote code execution. The highest...

8.8CVSS1.3AI score0.15126EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/10/05 6:6 a.m.56 views

CVE-2021-20318

The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using a JMS ObjectMessage...

7.2CVSS3AI score0.06924EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/09/17 6:35 p.m.56 views

CVE-2020-21531

In transfig's fig2dev 3.2.7b it is possible for an attacker to create a specially crafted file that causes a buffer overflow due to an off by one error during range checking. This leads to a denial of service, impacting availability of the program...

5.5CVSS4.1AI score0.0102EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/09/17 6:35 p.m.56 views

CVE-2020-21532

In transfig's fig2dev 3.2.7b it is possible for an attacker to create a specially crafted file that causes a buffer overflow due to accepting an invalid value. This leads to a denial of service, impacting availability of the program...

5.5CVSS4.8AI score0.01044EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/09/06 6:4 p.m.56 views

CVE-2021-39259

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.2AI score0.00418EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/09/06 5:22 p.m.56 views

CVE-2021-39255

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.2AI score0.00421EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/27 1:3 p.m.56 views

CVE-2021-3698

A flaw was found in Cockpit in the way it handles the certificate verification performed by the System Security Services Daemon SSSD. This flaw allows client certificates to authenticate successfully, regardless of the Certificate Revocation List CRL configuration or the certificate status. The...

7.5CVSS2.5AI score0.0065EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/18 5:12 p.m.56 views

CVE-2021-0084

A flaw was found in the Linux kernel. This flaw allows a local authenticated user to enable the escalation of privileges due to improper input validation in the IntelR Ethernet Controllers X722 and 800 series Linux RMDA driver. The highest threat from this vulnerability is to confidentiality,...

7.8CVSS4.7AI score0.00316EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/18 4:32 p.m.56 views

CVE-2021-38554

A flaw was found in the vault package. The Vault UI web application may fail to completely clear a client-side data cache on user logout. As a result, an authenticated user sharing a browser to access Vault may have been able to view the previous authenticated user’s cached secrets, even if they...

5.3CVSS3.1AI score0.00911EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/17 5:45 p.m.56 views

CVE-2021-3713

An out-of-bounds write flaw was found in the UAS USB Attached SCSI device emulation of QEMU. The device uses the guest supplied stream number unchecked, which can lead to out-of-bounds access to the UASDevice-data3 and UASDevice-status3 fields. A malicious guest user could use this flaw to crash...

7.8CVSS2.5AI score0.00566EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/11 7:26 p.m.56 views

CVE-2021-38209

A flaw was found in the Linux kernel. Observation of changes in any net namespace is possible due to these changes being leaked into all other net namespaces. The highest threat from this vulnerability is to data confidentiality...

3.3CVSS2.1AI score0.00283EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/10 10:56 p.m.56 views

CVE-2021-34485

.NET Core and Visual Studio Information Disclosure Vulnerability...

5.5CVSS1.4AI score0.01265EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2021/08/10 9:51 p.m.56 views

CVE-2021-2390

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.34 and prior and 8.0.25 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server...

7.1CVSS2AI score0.04267EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/09 12:20 p.m.56 views

CVE-2021-36770

A flaw was found in perl-Encode, where the Perl5 Encode module loaded modules within the current directory. This flaw allows an attacker with write access to the current directory of a Perl5 process to inject arbitrary Perl code when this module is loaded, which can be used for a local privilege...

7.8CVSS1.7AI score0.01397EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/07/14 6:28 p.m.56 views

CVE-2021-20298

A flaw was found in OpenEXR's B44Compressor. This flaw allows an attacker who can submit a crafted file to be processed by OpenEXR, to exhaust all memory accessible to the application. The highest threat from this vulnerability is to system availability...

7.5CVSS2.9AI score0.01224EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/07/07 9:53 p.m.56 views

CVE-2021-31810

Ruby's Net::FTP module trusted the IP address included in the FTP server's response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from...

5.8CVSS1.1AI score0.0305EPSS
Exploits1References4
Total number of security vulnerabilities5000