Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2022/05/21 12:19 a.m.•55 views

CVE-2022-1382

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of making the radare2 crash, thus affecting the availability of the system...

7.1CVSS2.2AI score0.00681EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2022/05/21 12:0 a.m.•55 views

CVE-2021-37961

Use after free in Tab Strip in Google Chrome prior to 94.0.4606.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS2.4AI score0.01222EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2022/05/07 2:19 p.m.•55 views

CVE-2021-27292

A regular expression denial of service ReDoS vulnerability was found in the npm library ua-parser-js. If a supplied user agent matches the Noble string and contains many spaces then the regex will conduct backtracking, taking an ever increasing amount of time depending on the number of spaces...

7.5CVSS3.1AI score0.03366EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/04/26 5:33 a.m.•55 views

CVE-2022-27455

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, mywildcmp8bitimpl at /strings/ctype-simple.c, affecting availability...

7.5CVSS3.1AI score0.01564EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/22 4:53 a.m.•55 views

CVE-2022-1420

A vulnerability was found in Vim. The issue occurs when using a number in a string for the lambda name, triggering an out-of-range pointer offset vulnerability. This flaw allows an attacker to trick a user into opening a crafted script containing an argument as a number and then using it as a...

6.8CVSS2.4AI score0.01418EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/20 2:57 p.m.•55 views

CVE-2022-28048

STB v2.27 was discovered to contain an integer shift of invalid size in the component stbijpegdecodeblockprogac...

8.8CVSS1.5AI score0.01557EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/14 10:38 p.m.•55 views

CVE-2022-27456

A flaw was found in the MariaDB Server. It contains a use-after-free in the component, VDec::VDec at /sql/sqltype.cc, affecting availability...

7.5CVSS3AI score0.02125EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/15 7:48 a.m.•55 views

CVE-2022-0908

A flaw was found in LibTIFF where a NULL source pointer passed as an argument to the memcpy function within the TIFFFetchNormalTag in tifdirread.c. This flaw allows an attacker with a crafted TIFF file to cause a crash that leads to a denial of service...

7.7CVSS5.9AI score0.0125EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/03/11 6:41 p.m.•55 views

CVE-2022-0886

A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat. Mitigation The given exploit needs...

1AI score
Exploits2References2
RedhatCVE
RedhatCVE
•added 2022/03/02 10:53 a.m.•55 views

CVE-2022-25375

An information disclosure vulnerability was found in the Linux kernel. The RNDIS USB gadget lacks validation of the size of the RNDISMSGSET command. This flaw allows a local attacker to dump contents of kernel memory space via a packet filter update mechanism and potentially extract sensitive...

5.5CVSS3.5AI score0.01054EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/25 3:18 p.m.•55 views

CVE-2022-26129

Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the subtlv length in the functions, parsehellosubtlv, parseihusubtlv, and parseupdatesubtlv in babeld/message.c...

8.1CVSS3.1AI score0.01014EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/25 3:18 p.m.•55 views

CVE-2022-26125

frrouting is vulnerable to a flaw that can cause buffer overflow through due to incorrect checks on the input packet length when processing type-length-value packets. There is high impact to availability due to the fact that the process up-time can be made unreliable...

7.8CVSS3.9AI score0.01007EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/02/23 12:17 p.m.•55 views

CVE-2022-0639

An authorization bypass flaw was found in url-parse. This flaw allows a local unauthenticated attacker to add an at symbol @ while submitting a URL. This issue enables the bypass of validation or block-listing restrictions...

6.5CVSS3.3AI score0.01535EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/22 10:21 p.m.•55 views

CVE-2021-44568

A buffer over-read flaw was found in the test case reader in libsolv that created multiple out-of-bounds read symptoms. Depending on how client applications use libsolv, this flaw leads to a denial of service of the application if an attacker can supply crafted input to the test case reader...

6.5CVSS2.3AI score0.01767EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/14 3:26 p.m.•55 views

CVE-2022-0572

A heap-based buffer overflow flaw was found in vim's exretab function of indent.c file. This flaw occurs when repeatedly using ":retab." This flaw allows an attacker to trick a user into opening a crafted file triggering a heap-overflow. Mitigation Untrusted vim scripts with -s scriptin are not...

8.4CVSS3.8AI score0.26583EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/02/10 7:48 p.m.•55 views

CVE-2022-22764

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developers and community members Paul Adenot and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 96 and Firefox ESR 91.5. Some of these bugs showed evidence of memory corruption, some of which could...

8.8CVSS3.2AI score0.00702EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2022/02/03 5:53 p.m.•55 views

CVE-2022-0485

A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdcopy was blindly treating the completion of an asynchronous command as successful, rather than checking the error parameter. This could result in the silent creation of a...

4.8CVSS1AI score0.00788EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/02/03 4:31 a.m.•55 views

CVE-2021-46661

MariaDB through 10.5.9 allows an application crash in findfieldintables and findorderinlist via an unused common table expression CTE...

5.5CVSS3.7AI score0.00403EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/20 6:11 p.m.•55 views

CVE-2022-0322

A flaw was found in the sctpmakestrresetreq function in net/sctp/smmakechunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw, an attempt to use more buffer than is allocated triggers a BUGON issue, leading to a denial of service DOS. Mitigation...

5.5CVSS0.8AI score0.00292EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/01/14 7:55 p.m.•55 views

CVE-2021-44532

It was found that node.js did not safely read the x509 certificate generalName format properly, resulting in data injection. A certificate could use a specially crafted extension in order to be successfully validated, permitting an attacker to impersonate a trusted host...

7.4CVSS3.4AI score0.10364EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/11 5:24 p.m.•55 views

CVE-2021-3999

A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd in a setuid program could use this flaw to potentially execute...

7.8CVSS2.3AI score0.0072EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/11/16 6:45 p.m.•55 views

CVE-2021-42377

A flaw was found in BusyBox, where it did not properly sanitize while processing a crafted shell command, leading to a denial of service and possible code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

9.8CVSS8.8AI score0.03379EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/11/09 4:17 p.m.•55 views

CVE-2021-3941

In ImfChromaticities.cpp routine RGBtoXYZ, there are some division operations such as float Z = 1 - chroma.white.x - chroma.white.y Y / chroma.white.y; and chroma.green.y X + Z / d; but the divisor is not checked for a 0 value. A specially crafted file could trigger a divide-by-zero condition whi...

6.5CVSS6.6AI score0.00291EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/10/05 6:58 p.m.•55 views

CVE-2021-32672

A flaw was found in redis. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer, potentially leading to an information disclosure...

5.3CVSS2.7AI score0.01702EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/30 3:2 p.m.•55 views

CVE-2021-39212

A flaw was found in ImageMagick in the Postscript File Handler component. An attacker could exploit this flaw which would, in some cases, lead to postscript files to be read and written to even when specifically excluded by a module policy in policy.xml. Mitigation Users are advised to use the...

4.4CVSS1AI score0.00328EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/23 3:6 p.m.•55 views

CVE-2021-37972

A flaw was found in the libjpeg-turbo package, where it is susceptible to an out-of-bounds read on crafted input and malformed files. Proper bounds checking is not enforced when processing JPEG files. The highest threat from this vulnerability is system availability...

8.8CVSS0.9AI score0.01662EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/09/15 11:48 p.m.•55 views

CVE-2020-8561

A flaw was found in Kubernetes. This flaw allows an actor that controls the responses of the MutatingWebhookConfiguration or the ValidatingWebhookConfiguration requests to redirect kube-apiserver requests to the private network of the apiserver. If that user can view kube-apiserver logs when the...

4.1CVSS2.5AI score0.01953EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/13 6:54 p.m.•55 views

CVE-2020-19144

Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the 'in TIFFmemcpy' funtion in the component 'tifunix.c'...

7.5CVSS5.4AI score0.01594EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/09/06 5:22 p.m.•55 views

CVE-2021-39254

The ntfs3g package is susceptible to an input validation flaw. A crafted NTFS image with invalid values could trigger an improper check. This incorrect check causes an integer overflow which then leads to a heap overflow. The highest threat from this vulnerability is to confidentiality, integrity...

7.8CVSS2.6AI score0.00436EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/31 6:49 p.m.•55 views

CVE-2021-23434

Prototype pollution has been discovered in object-path NodeJS library. A type confusion vulnerability can lead to a bypass of CVE-2020-15256 when the path components used in the path parameter are arrays. In particular, the condition currentPath === 'proto' returns false if currentPath is 'proto'...

9.8CVSS2AI score0.01902EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/08/27 7:0 a.m.•55 views

CVE-2021-3743

An out-of-bounds OOB memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check allows a local attacker to gain access to out-of-bounds memory, leading to a system crash or a leak of internal kernel information. The highest threat from this...

7.1CVSS0.9AI score0.0072EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/08/18 5:35 p.m.•55 views

CVE-2021-37714

jsoup is a Java library for working with HTML. Those using jsoup versions prior to 1.14.2 to parse untrusted HTML or XML may be vulnerable to DOS attacks. If the parser is run on user supplied input, an attacker may supply content that causes the parser to get stuck loop indefinitely until...

7.5CVSS1.1AI score0.06873EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/08/11 6:20 p.m.•55 views

CVE-2020-21683

A global buffer overflow in the shadeortintnameafterdeclarecolor in genpstricks.c of fig2dev 3.2.7b allows attackers to cause a denial of service DOS via converting a xfig file into pstricks format...

5.5CVSS4.7AI score0.00782EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/08/10 9:21 p.m.•55 views

CVE-2021-38199

A flaw was found in the hanging of mounts in the Linux kernel's NFS4 subsystem where remote servers are unreachable for the client during migration of data from one server to another during trunking detection. This flaw allows a remote NFS4 server if the client is connected to starve the resource...

6.5CVSS0.6AI score0.01245EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/07/01 5:22 p.m.•55 views

CVE-2021-29463

Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used to write metadata into a crafted image file. An...

5.5CVSS4.3AI score0.01119EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/15 1:47 p.m.•55 views

CVE-2021-3593

An invalid pointer initialization issue was found in the SLiRP networking implementation of QEMU. The flaw exists in the udp6input function and could occur while processing a udp packet that is smaller than the size of the 'udphdr' structure. This issue may lead to out-of-bounds read access or...

3.8CVSS1.5AI score0.00326EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/15 12:23 p.m.•55 views

CVE-2021-3601

A flaw was found in the way OpenSSL will accept a certificate with explicitly set Basic Constraints to CA:FALSE as a valid CA if it is present in the trusted bundle. This flaw allows an attacker with access to a private key, of which the corresponding certificate is in the trust bundle, to use th...

1.6AI score
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/06/07 9:17 p.m.•55 views

CVE-2021-3585

A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager...

5.5CVSS1.6AI score0.00244EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/05/13 5:59 p.m.•55 views

CVE-2020-36328

A flaw was found in libwebp. A heap-based buffer overflow in functions WebPDecodeInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS3.1AI score0.02662EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/06 6:36 p.m.•55 views

CVE-2021-31829

A flaw was found in the Linux kernel's eBPF verification code. By default, accessing the eBPF verifier is only accessible to privileged users with CAPSYSADMIN. This flaw allows a local user who can insert eBPF instructions, to use the eBPF verifier to abuse a spectre-like flaw and infer all syste...

6.2CVSS2.3AI score0.00306EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/04 11:4 p.m.•55 views

CVE-2020-8562

A security issue was discovered in Kubernetes where an authorized user may be able to access private networks on the Kubernetes control plane components. Kubernetes clusters are only affected if an untrusted user can create or modify Node objects and proxy to them, or an untrusted user can create...

3.5CVSS3AI score0.01082EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/03/30 10:8 p.m.•55 views

CVE-2021-21409

A flaw was found in Netty. There is an issue where the content-length header is not validated correctly if the request uses a single Http2HeaderFrame with the endstream set to true. This flaw leads to request smuggling if the request is proxied to a remote peer and translated to HTTP/1.1. The...

5.9CVSS6.5AI score0.04935EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/03/30 2:27 p.m.•55 views

CVE-2021-29265

A flaw was found in the Linux kernel. The usbip driver allows attackers to cause a denial of service GPF because the stub-up sequence has race conditions during an update of the local and shared status. The highest threat from this vulnerability is to system availability...

4.7CVSS6AI score0.00258EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/12/17 8:48 p.m.•55 views

CVE-2020-26258

XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.15, a Server-Side Forgery Request vulnerability can be activated when unmarshalling. The vulnerability may allow a remote attacker to request data from internal resources that are not publicly...

9.8CVSS0.5AI score0.84362EPSS
Exploits10References3
RedhatCVE
RedhatCVE
•added 2020/12/04 6:53 a.m.•55 views

CVE-2020-27822

A flaw was found in Wildfly. When an application uses the OpenTracing API's java-interceptors, there is a possibility of a memory leak. This flaw allows an attacker to impact the availability of the server. The highest threat from this vulnerability is to system availability...

7.1CVSS3.2AI score0.01109EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/11/03 11:1 a.m.•55 views

CVE-2020-25661

A Red Hat only CVE-2020-12351 regression issue was found in the way the Linux kernel's Bluetooth implementation handled L2CAP packets with A2MP CID. This flaw allows a remote attacker in an adjacent range to crash the system, causing a denial of service or potentially executing arbitrary code on...

8.8CVSS1.6AI score0.07693EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2020/09/22 6:39 p.m.•55 views

CVE-2020-25596

A flaw was found in Xen. One of Xen's sanitization paths injects a GP fault and incorrectly delivers it twice to the guest. This flaw allows malicious or buggy user space to crash the guest kernel, resulting in a VM denial of service. Mitigation Running only x86 PVH/HVM guests avoids the...

5.5CVSS4.7AI score0.00512EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/09/07 10:19 a.m.•55 views

CVE-2020-3902

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to a cross site...

4.3CVSS2.1AI score0.01124EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/07/06 7:50 p.m.•55 views

CVE-2020-14314

A memory out-of-bounds read flaw was found in the Linux kernel's ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability...

2.1CVSS6.3AI score0.00356EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/05/19 1:30 p.m.•55 views

CVE-2020-1945

Apache Ant 1.1 to 1.9.14 and 1.10.0 to 1.10.7 uses the default temporary directory identified by the Java system property java.io.tmpdir for several tasks and may thus leak sensitive information. The fixcrlf and replaceregexp tasks also copy files from the temporary directory back into the build...

3.3CVSS3AI score0.01793EPSS
Exploits0References3
Total number of security vulnerabilities5000