Lucene search
K
RedhatcveMost viewed

206354 matches found

RedhatCVE
RedhatCVE
•added 2021/07/06 3:17 p.m.•56 views

CVE-2021-3570

A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause an information leak, crash, or potentially remote code execution. The highest threat from this vulnerability is to data confidentiali...

8.8CVSS2AI score0.02955EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/22 3:59 p.m.•56 views

CVE-2021-0606

A flaw was found in the Linux kernel. The function drmsyncobjhandletofd first calls drmsyncobjfind which increments the refcount of the object on success. In all of the drmsyncobjhandletofd error paths, the refcount is decremented, but in the success path the refcount should remain at +1 as the...

6.7CVSS2.9AI score0.00156EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/26 9:12 p.m.•56 views

CVE-2021-31917

A flaw was found in Red Hat DataGrid and Infinispan. An attacker could bypass authentication on all REST endpoints when DIGEST is used as the authentication method. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS2.5AI score0.01304EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/19 4:35 p.m.•56 views

CVE-2021-28662

An input validation flaw was found in Squid. This issue could allow a remote server to perform a denial of service against all clients using the proxy when delivering HTTP response messages. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue...

6.5CVSS0.2AI score0.71867EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/05/19 12:26 a.m.•56 views

CVE-2020-26144

A flaw was found in the Linux kernel, where the WiFi implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 ex., LLC/SNAP header for EAPOL. The highest threat from this vulnerability is to integrity. Mitigation Mitigation for this issue is either...

6.5CVSS1AI score0.04913EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/11 8:55 p.m.•56 views

CVE-2021-28677

A flaw was found in python-pillow. The readline used in EPS has to deal with any combination of \r and \n as line endings. It accidentally used a quadratic method of accumulating lines while looking for a line ending. A malicious EPS file could use this to perform a denial-of-service of Pillow in...

7.5CVSS1AI score0.02293EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/24 2:53 p.m.•56 views

CVE-2021-21342

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability where the processed stream at unmarshalling time contains type information to recreate the formerly written objects. XStream creates therefore new instances based on...

9.1CVSS2AI score0.4999EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/03/10 6:3 p.m.•56 views

CVE-2021-3426

A flaw was found in Python 3's pydoc. This flaw allows a local or adjacent attacker who discovers or can convince another local or adjacent user to start a pydoc server to access the server and then use it to disclose sensitive information belonging to the other user that they would not normally...

5.7CVSS0.4AI score0.01863EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/11 1:34 a.m.•56 views

CVE-2021-27135

A flaw was found in xterm. A specially crafted sequence of combining characters causes an out of bounds write leading to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Mitigation This vulnerability can be...

9.8CVSS2.2AI score0.07541EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/02/04 6:23 p.m.•56 views

CVE-2021-21702

A NULL pointer dereference issue is in the SOAP extension of PHP. More specifically, the flaw occurs in the SoapClient when parsing a WSDL document due to improper checking of a child node name. A malicious or compromised server replies with a crafted WSDL document, leading to a denial of service...

7.5CVSS2.6AI score0.03179EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/01/19 2:57 p.m.•56 views

CVE-2020-25684

A flaw was found in dnsmasq. When getting a reply from a forwarded query, dnsmasq checks in the forward.c:replyquery if the reply destination address/port is used by the pending forwarded queries. However, it does not use the address/port to retrieve the exact forwarded query, substantially...

4.3CVSS0.7AI score0.04873EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2021/01/07 8:14 p.m.•56 views

CVE-2020-36184

A flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation The following conditions are needed for an exploit, w...

8.8CVSS1.9AI score0.10379EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/01/07 7:42 p.m.•56 views

CVE-2020-36179

A flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation The following conditions are needed for an exploit, w...

8.8CVSS1.9AI score0.20929EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2021/01/04 1:0 p.m.•56 views

CVE-2020-35508

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process...

5.3CVSS5.8AI score0.00706EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/12/03 11:12 a.m.•56 views

CVE-2020-28948

ArchiveTar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked...

7.8CVSS3.8AI score0.47493EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2020/11/10 2:59 a.m.•56 views

CVE-2020-14351

A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly escalate privileges. The highest threat from this vulnerability is to data confidentiality and integri...

7.8CVSS7.3AI score0.00302EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/09 2:59 p.m.•56 views

CVE-2020-25704

A memory leak flaw was found in the Linux kernel’s performance monitoring subsystem when using PERFEVENTIOCSETFILTER. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for...

6.2CVSS6.1AI score0.00348EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/10/05 5:24 a.m.•56 views

CVE-2016-10165

The TypeMLURead function in cmstypes.c in Little CMS aka lcms2 allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read...

5.8CVSS5.2AI score0.02772EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/08/19 3:9 p.m.•56 views

CVE-2020-24394

A vulnerability was found in NFSv4.2 in the Linux kernel, where a server fails to correctly apply umask when creating a new object on filesystem without ACL support for example, ext4 with the "noacl" mount option. This flaw allows a local attacker with a user privilege to cause a kernel informati...

3.6CVSS0.4AI score0.00361EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/08/18 7:29 p.m.•56 views

CVE-2020-8911

A flaw was found in the AWS S3 Crypto SDK that allows users to encrypt files stored in S3 buckets with AES-CBC, without computing a MAC on the data. This allows for a padding oracle, enabling attackers with both write access to the target S3 bucket and the ability to observe the result of valid...

2.1CVSS4.3AI score0.00348EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/08/11 8:13 p.m.•56 views

CVE-2020-11985

A flaw was found in the modremoteip module shipped with the httpd package. This flaw allows an attacker to spoof the IP address, resulting in the bypass of a modrewrite rule. The highest threat from this vulnerability is to integrity...

4.3CVSS1.5AI score0.05884EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/05/06 8:10 p.m.•56 views

CVE-2020-12655

A flaw was discovered in the XFS source in the Linux kernel. This flaw allows an attacker with the ability to mount an XFS filesystem, to trigger a denial of service while attempting to sync a file located on an XFS v5 image with crafted metadata. Mitigation This flaw requires an attacker being...

5.5CVSS6AI score0.00461EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/05/06 5:40 p.m.•56 views

CVE-2020-11652

A flaw was found in salt. The salt-master process ClearFuncs class allows access to some methods that improperly sanitize paths. These methods allow arbitrary directory access to authenticated users. Mitigation Mitigation for this issue is either not available or the currently available options d...

4CVSS7.8AI score0.86063EPSS
Exploits17References5
RedhatCVE
RedhatCVE
•added 2020/04/20 6:7 p.m.•56 views

CVE-2020-11494

A flaw was discovered in slcbump in drivers/net/can/slcan.c in CAN Communication Protocol. It allows a local attacker with special user privilege or root to read sensitive kernel stack information considering CONFIGINITSTACKALL is not enabled when a partially initialized data structure is exposed...

4.4CVSS5.7AI score0.00722EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 10:52 a.m.•56 views

CVE-2019-10744

A Prototype Pollution vulnerability was found in lodash. Calling certain methods with untrusted JSON could lead to modifying objects up the prototype chain, including the global Object. A crafted JSON object passed to a vulnerable method could lead to denial of service or data injection, with...

9.1CVSS2.6AI score0.05006EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2020/04/03 8:1 p.m.•56 views

CVE-2019-15290

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate...

4.9CVSS6.3AI score0.00721EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/01 1:55 p.m.•56 views

CVE-2019-3460

A flaw was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capparseconfrsp and l2capparseconfreq functions. An attacker with physical access within the range of standard Bluetooth transmission can create a...

6.5CVSS2.7AI score0.01827EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/03/18 7:37 a.m.•56 views

CVE-2019-11190

A flaw in the loadelfbinary function in the Linux kernel allows a local attacker to leak the base address of .text and stack sections for setuid binaries and bypass ASLR because installexeccreds is called too late in this function...

4.7CVSS3.8AI score0.00485EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/03/07 2:1 p.m.•56 views

CVE-2019-14283

A vulnerability was found in the Linux kernel’s floppy disk driver implementation. A local attacker with access to the floppy device could call setgeometry in drivers/block/floppy.c, which does not validate the sect and head fields, causing an integer overflow and out-of-bounds read. This flaw ma...

6.8CVSS1.6AI score0.00734EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2020/02/26 7:44 a.m.•56 views

CVE-2020-6418

Type confusion in V8 in Google Chrome prior to 80.0.3987.122 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.78808EPSS
Exploits6References4
RedhatCVE
RedhatCVE
•added 2020/01/09 7:38 p.m.•56 views

CVE-2019-16254

Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients...

5.3CVSS0.6AI score0.0576EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/23 5:38 p.m.•56 views

CVE-2019-19767

A use-after-free flaw was found in the Linux kernel’s ext4 file system functionality when the user mount ext4 partition, with the usage of an additional debug parameter is defining an extra inode size. If this parameter has a non zero value, this flaw allows a local user to crash the system when...

5.5CVSS6.3AI score0.02081EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/12/18 6:6 p.m.•56 views

CVE-2019-19814

An out-of-bounds OOB memory access flaw was found in the Linux kernel's F2FS file system exploiting the NAND flash memory-based storage device. This flaw allows a local attacker to crash the system or leak internal kernel information. Mitigation Mitigation for this issue is either not available o...

9.3CVSS0.5AI score0.03297EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/12/13 9:8 p.m.•56 views

CVE-2019-19530

A use-after-free flaw was found in the acmprobe USB subsystem in the Linux kernel. A race condition occurs when a destroy procedure is initiated allowing the refcount to decrement on the interface so early that it is never under counted. A malicious USB device is required for exploit. System...

5.7CVSS1.7AI score0.00426EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2019/11/28 5:47 p.m.•56 views

CVE-2019-2958

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multipl...

5.9CVSS6.3AI score0.02638EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/27 3:17 p.m.•56 views

CVE-2019-10220

A flaw was found in the Linux kernel's SMB client. Path separators are not checked by cifs.ko when parsing directory listings back. A bad server can return relative paths that will be returned as-is to userspace potentially leading to manipulating of files outside shared mount points. The highest...

9.3CVSS3.2AI score0.05123EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/16 6:44 a.m.•56 views

CVE-2019-13272

A flaw was found in the way PTRACETRACEME functionality was handled in the Linux kernel. The kernel's implementation of ptrace can inadvertently grant elevated permissions to an attacker who can then abuse the relationship between the tracer and the process being traced. This flaw could allow a...

7.8CVSS7.3AI score0.52199EPSS
Exploits21References2
RedhatCVE
RedhatCVE
•added 2019/10/10 3:19 p.m.•56 views

CVE-2018-1312

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

9.8CVSS1.9AI score0.15885EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/10 3:20 a.m.•56 views

CVE-2018-2814

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

8.3CVSS1.9AI score0.03746EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/08 8:30 p.m.•56 views

CVE-2019-16994

A flaw was found in the way the sitinitnet function in the Linux kernel handled resource cleanup on errors. This flaw allows an attacker to use the error conditions to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the R...

4.7CVSS1.7AI score0.00454EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/10/07 3:5 a.m.•56 views

CVE-2017-12613

An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak...

7.4CVSS2.6AI score0.01749EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/08/01 7:53 a.m.•56 views

CVE-2019-13648

A flaw was found in the PowerPc platform, where the kernel will panic if the transactional memory is disabled. An attacker could use this flaw to panic the system by constructing a signal context through the transactional memory MSR bits set...

5.5CVSS3.4AI score0.00589EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2018/02/06 5:19 a.m.•56 views

CVE-2018-6594

lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have semantic security in face of a ciphertext-only attack. The Decisional Diffie-Hellman DDH...

7.5CVSS4AI score0.0211EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/07/18 8:19 p.m.•56 views

CVE-2017-10193

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

3.1CVSS1.9AI score0.02224EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/05/29 12:48 p.m.•56 views

CVE-2017-1000363

A vulnerability was found in the Linux kernel's lpsetup function where it doesn't apply any bounds checking when passing "lp=none". This can result into overflow of the parportnr array. An attacker with control over kernel command line can overwrite kernel code and data with fixed 0xff values...

7.8CVSS4AI score0.00639EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2016/12/20 8:47 a.m.•56 views

CVE-2016-10012

It was found that the boundary checks in the code implementing support for pre-authentication compression could have been optimized out by certain compilers. An attacker able to compromise the privilege-separated process could possibly use this flaw for further attacks against the privileged...

7.8CVSS4.4AI score0.01281EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2016/05/23 12:18 p.m.•56 views

CVE-2016-4580

The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request...

5CVSS4.8AI score0.04178EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/01/09 9:32 a.m.•55 views

CVE-2024-39817

Insertion of sensitive information into sent data issue exists in Cybozu Office 10.0.0 to 10.8.6, which may allow a user who can login to the product to view data that the user does not have access by conducting 'search' under certain conditions in Custom App...

6.5CVSS6.4AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/05/18 8:0 p.m.•55 views

CVE-2025-22233

CVE-2024-38820 ensured Locale-independent, lowercase conversion for both the configured disallowedFields patterns and for request parameter names. However, there are still cases where it is possible to bypass the disallowedFields checks. Affected Spring Products and Versions Spring Framework: 6.2...

5.3CVSS6.9AI score0.00631EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2025/05/08 10:11 a.m.•55 views

CVE-2025-21453

Memory corruption while processing a data structure, when an iterator is accessed after it has been removed, potential failures occur...

7.8CVSS7.1AI score0.00089EPSS
Exploits0References1
Total number of security vulnerabilities5000