Lucene search
K
RedhatcveMost viewed

206305 matches found

RedhatCVE
RedhatCVE
•added 2020/03/18 7:37 a.m.•54 views

CVE-2019-11190

A flaw in the loadelfbinary function in the Linux kernel allows a local attacker to leak the base address of .text and stack sections for setuid binaries and bypass ASLR because installexeccreds is called too late in this function...

4.7CVSS3.8AI score0.00485EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/02/13 12:15 p.m.•54 views

CVE-2020-8649

A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console. An out-of-bounds read can occur, leaking information to the console. Mitigation Mitigation for this issue is either not available or the currently...

5.9CVSS6.6AI score0.00488EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/02/10 6:44 p.m.•54 views

CVE-2020-7226

CiphertextHeader.java in Cryptacular 1.2.3, as used in Apereo CAS and other products, allows attackers to trigger excessive memory allocation during a decode operation, because the nonce array length associated with "new byte" may depend on untrusted input within the header of encoded data...

7.5CVSS4.6AI score0.03334EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/01/18 9:23 a.m.•54 views

CVE-2018-10549

An out-of-bounds read has been found in PHP when function exifiifaddvalue handles the case of a MakerNote that lacks a final terminator character. A remote attacker could use this vulnerability to cause a crash...

8.8CVSS1.7AI score0.07159EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/01/16 7:9 p.m.•54 views

CVE-2019-20096

A flaw was found in the Linux kernel’s implementation of the Datagram Congestion Control Protocol DCCP. A local attacker with access to the system can create DCCP sockets to cause a memory leak and repeat this operation to exhaust all memory and panic the system. Mitigation As the DCCP module wil...

5.5CVSS6.9AI score0.00994EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/21 11:38 a.m.•54 views

CVE-2019-19046

A memory leak problem was found in ipmibmcregister in drivers/char/ipmi/ipmimsghandler.c in Intelligent Platform Management Interface IPMI which is used for incoming and outgoing message routing purpose. This flaw may allow an attacker with minimal privilege to cause a denial of service by...

6.8CVSS1.6AI score0.02745EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/10 3:19 p.m.•54 views

CVE-2018-1312

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

9.8CVSS1.9AI score0.15885EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/10 4:24 a.m.•54 views

CVE-2017-9075

The sctpv6createacceptsk function in net/sctp/ipv6.c in the Linux kernel mishandles inheritance, which allows local users to cause a denial of service or possibly have unspecified other impact via crafted system calls, a related issue to CVE-2017-8890. An unprivileged local user could use this fl...

7.8CVSS3.8AI score0.01372EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2019/08/01 7:53 a.m.•54 views

CVE-2019-13648

A flaw was found in the PowerPc platform, where the kernel will panic if the transactional memory is disabled. An attacker could use this flaw to panic the system by constructing a signal context through the transactional memory MSR bits set...

5.5CVSS3.4AI score0.00589EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/07/18 6:51 a.m.•54 views

CVE-2019-13631

A flaw was found in the Linux kernel's implementation of GTCO tablet/digitizer's version of the parsehidreportdescriptor in drivers. An attacker with local access could use this flaw to create a specially crafted USB device inserted into the host to corrupt memory, trigger an out-of-bounds write...

6.8CVSS2.9AI score0.00817EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/05/03 12:4 p.m.•54 views

CVE-2019-10247

In Eclipse Jetty version 7.x, 8.x, 9.2.27 and older, 9.3.26 and older, and 9.4.16 and older, the server running on any OS and Jetty version combination will reveal the configured fully qualified directory base resource location on the output of the 404 error for not finding a Context that matches...

5.3CVSS1AI score0.05782EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2018/07/10 3:19 p.m.•54 views

CVE-2018-10872

A flaw was found in the way the Linux kernel handled exceptions delivered after a stack switch operation via Mov SS or Pop SS instructions. During the stack switch operation, processor does not deliver interrupts and exceptions, they are delivered once the first instruction after the stack switch...

7.8CVSS3.3AI score0.18404EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2017/09/05 2:19 p.m.•54 views

CVE-2017-9805

The REST Plugin in Apache Struts2 is using a XStreamHandler with an instance of XStream for deserialization without any type filtering which could lead to Remote Code Execution when deserializing XML payloads. An attacker could use this flaw to execute arbitrary code or conduct further attacks...

8.1CVSS4.2AI score0.99461EPSS
Exploits23References2
RedhatCVE
RedhatCVE
•added 2017/06/29 1:19 p.m.•54 views

CVE-2017-8797

It was found that the NFSv4 server in the Linux kernel did not properly validate layout type when processing NFSv4 pNFS LAYOUTGET and GETDEVICEINFO operands. A remote attacker could use this flaw to soft-lockup the system and thus cause denial of service...

8.6CVSS7AI score0.08665EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/06/19 3:18 p.m.•54 views

CVE-2017-1000366

A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were adjacent to each other, an attacker could use this flaw to jump over the stack guard gap, cause controlled memory corruption on process sta...

7.8CVSS1.4AI score0.05186EPSS
Exploits17References2
RedhatCVE
RedhatCVE
•added 2017/05/17 3:9 p.m.•54 views

CVE-2017-8890

The inetcskclonelock function in net/ipv4/inetconnectionsock.c in the Linux kernel allows attackers to cause a denial of service double free or possibly have unspecified other impact by leveraging use of the accept system call. An unprivileged local user could use this flaw to induce kernel memor...

7.8CVSS4.4AI score0.01372EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2016/12/15 8:20 p.m.•54 views

CVE-2016-6480

A race condition flaw was found in the ioctlsendfib function in the Linux kernel's aacraid implementation. A local attacker could use this flaw to cause a denial of service out-of-bounds access or system crash by changing a certain size value...

5.1CVSS2.9AI score0.00342EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/12/04 12:11 a.m.•53 views

CVE-2025-50361

Buffer Overflow was found in SmallBASIC community SmallBASIC with SDL Before v1228, and commit sha:298a1d495355959db36451e90a0ac74bcc5593fe in the function main.cpp, which can lead to potential information leakage and crash...

5.1CVSS6.7AI score0.0018EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2025/04/12 5:5 a.m.•53 views

CVE-2025-3102

The SureTriggers: All-in-One Automation Platform plugin for WordPress is vulnerable to an authentication bypass leading to administrative account creation due to a missing empty value check on the 'secretkey' value in the 'autheticateuser' function in all versions up to, and including, 1.0.78. Th...

8.1CVSS7.4AI score0.76286EPSS
Exploits8References1
RedhatCVE
RedhatCVE
•added 2025/03/17 12:17 a.m.•53 views

CVE-2025-30066

tj-actions changed-files before 46 allows remote attackers to discover secrets by reading actions logs. The tags v1 through v45.0.7 were affected on 2025-03-14 and 2025-03-15 because they were modified by a threat actor to point at commit 0e58ed8, which contained malicious updateFeatures code...

8.6CVSS7AI score0.41008EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2024/08/09 10:19 a.m.•53 views

CVE-2024-42257

In the Linux kernel, the following vulnerability has been resolved: ext4: use memtostrpad for svolumename As with the other strings in struct ext4superblock, svolumename is not NUL terminated. The other strings were marked in commit 072ebb3bffe6 "ext4: add nonstring annotations to ext4.h". Using...

5.5CVSS7.2AI score0.00202EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/07/23 9:24 p.m.•53 views

CVE-2024-4076

A flaw was found in the bind9 package, where a client query triggers stale data and also requires local lookups may trigger a assertion failure. This issue results in a denial of service of the bind server. Mitigation Mitigation for this issue is either not available or the currently available...

7.5CVSS7.2AI score0.02111EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/05/14 11:56 p.m.•53 views

CVE-2024-32004

A vulnerability was found in Git. This vulnerability can be exploited by an unauthenticated attacker who places a specialized repository on the target's local system. If the victim clones this repository, the attacker can execute arbitrary code. Mitigation Exercise caution when cloning repositori...

8.1CVSS7.4AI score0.01271EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/04/08 10:51 a.m.•53 views

CVE-2024-25743

A vulnerability was found in AMD SEV-SNP, where a malicious hypervisor can potentially break confidentiality and integrity of SEV-SNP on Linux guests by injecting interrupts. An attacker can inject interrupt 0x80, which is used by Linux for legacy 32-bit system calls, and arbitrarily change the...

7.1CVSS5.9AI score0.00247EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2024/04/01 2:52 p.m.•53 views

CVE-2024-27099

A double free vulnerability was found in python-uamqp-azure affecting the embedded azure-uamqp-c library at the link.c file. If some uncommon conditions are met, an authenticated user may cause remote code execution...

6CVSS7.3AI score0.01418EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2024/03/20 6:1 p.m.•53 views

CVE-2024-1394

A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs​. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.goL113. The objects leaked are pkey​ and ctx​. That functi...

7.5CVSS7.6AI score0.01533EPSS
Exploits0References8
RedhatCVE
RedhatCVE
•added 2024/03/18 7:28 p.m.•53 views

CVE-2024-21652

A bypass of brute force protection flaw was found in Argo CD. Since login attempts are stored only in memory, every time the server restarts, that number is lost and unlimited login attempts can be made. It is possible to bypass brute force protections by chaining this issue with a denial of...

5.4CVSS9.2AI score0.01176EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2024/03/06 3:33 a.m.•53 views

CVE-2024-24785

A flaw was found in Go's html/template standard library package. If errors returned from MarshalJSON methods contain user-controlled data, they may be used to break the contextual auto-escaping behavior of the html/template package, allowing subsequent actions to inject unexpected content into...

6.5CVSS7.1AI score0.00795EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2024/02/29 3:32 p.m.•53 views

CVE-2024-26607

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference crash has been observed rarely on TI platforms using sii9022 bridge: 53.271356 sii902xgetedid+0x34/0x70 sii902x 53.276066 sii902xbridgegetedid+0x14/0x20 sii90...

4.4CVSS6.5AI score0.00232EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/19 8:50 p.m.•53 views

CVE-2024-25710

A loop with an unreachable exit condition Infinite Loop vulnerability was found in Apache Common Compress. This issue can lead to a denial of service. Mitigation No mitigation is currently available for this vulnerability...

8.1CVSS7.8AI score0.00441EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2024/01/17 9:12 a.m.•53 views

CVE-2024-20918

Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or...

7.4CVSS7.1AI score0.00911EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/01/12 10:34 p.m.•53 views

CVE-2023-49569

A path traversal vulnerability was discovered in the go library go-git. This issue may allow an attacker to create and amend files across the filesystem when applications are using the default ChrootOS, potentially allowing remote code execution. Mitigation In cases where a bump to the latest...

8.1CVSS9.5AI score0.01523EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/12/20 11:33 a.m.•53 views

CVE-2023-6856

The Mozilla Foundation Security Advisory describes this flaw as: The WebGL DrawElementsInstanced method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution and sandbox escape...

8.8CVSS8.2AI score0.20472EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/12/09 1:26 a.m.•53 views

CVE-2023-6394

A flaw was found in Quarkus. This issue occurs when receiving a request over websocket with no role-based permission specified on the GraphQL operation, Quarkus processes the request without authentication despite the endpoint being secured. This can allow an attacker to access information and...

7.4CVSS7AI score0.00814EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/10/30 1:43 p.m.•53 views

CVE-2023-34059

A flaw was found in open-vm-tools. This flaw allows a malicious actor with non-root privileges to hijack the /dev/uinput file descriptor, allowing them to simulate user inputs...

7.4CVSS7.1AI score0.00402EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/10/11 6:43 a.m.•53 views

CVE-2023-43641

A flaw was found in libcue, which is consumed by the tracker-miners application. A user of the GNOME desktop environment can be exploited by downloading a cue sheet from a malicious web page, allowing remote code execution...

8.8CVSS6.8AI score0.1657EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/10/09 9:51 a.m.•53 views

CVE-2023-39195

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority for the following reason: CVE-2023-39195 was found to be a duplicate of CVE-2023-42755. Please see https://access.redhat.com/security/cve/CVE-2023-42755 for more information...

6.2AI score0.004EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/10/09 7:54 a.m.•53 views

CVE-2023-39194

A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of-bounds read, potentially leadi...

3.2CVSS5.6AI score0.00417EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/10/03 6:24 p.m.•53 views

CVE-2023-4693

An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to present a specially crafted NTFS file system image to read arbitrary memory locations. A successful attack allows sensitive data cached in memory or EFI variable values to...

5.3CVSS5.7AI score0.00536EPSS
Exploits2References6
RedhatCVE
RedhatCVE
•added 2023/09/21 7:54 p.m.•53 views

CVE-2023-5115

An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to craft a malicious Ansible role and make the victim execute the role. A symlink can be used to overwrite a file outside of the extraction path...

6.3CVSS7AI score0.00859EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/09/13 9:49 a.m.•53 views

CVE-2023-36794

A vulnerability was found in dotnet. This issue can lead to a heap-based buffer overflow when loading PDB type records in msdia140.dll used by Visual Studio. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security...

7.8CVSS7.6AI score0.01441EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/09/02 3:35 p.m.•54 views

CVE-2020-27418

A use-after-free vulnerability was found in the vgaconinvertregion in drivers/video/console/vgacon.c in the low-level VGA-based console driver in the Linux kernel. This flaw allows a local privileged attacker to crash the system due to a missing sanity check, causing a denial of service. Mitigati...

4.4CVSS5AI score0.00228EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/28 7:45 p.m.•53 views

CVE-2023-4569

A memory leak flaw was found in nftsetcatchallflush in net/netfilter/nftablesapi.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak. Mitigation Mitigation for this issue is to skip loading the affected...

5.5CVSS5.6AI score0.00282EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/23 9:22 p.m.•53 views

CVE-2022-44840

A heap-based buffer overflow vulnerability was found in binutils in the findsectioninset function. This flaw allows an attacker to use a specially crafted payload to trigger a buffer overflow, resulting in issues with availability, confidentiality, and integrity...

7.8CVSS7.7AI score0.00461EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/08/09 8:49 p.m.•53 views

CVE-2023-39978

ImageMagick before 6.9.12-91 allows attackers to cause a denial of service memory consumption in Magick::Draw...

3.3CVSS6.5AI score0.00312EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/08 5:51 p.m.•53 views

CVE-2023-38180

An uncontrolled resource consumption vulnerability was found in the Kestrel component of the dotNET. When detecting a potentially malicious client, Kestrel will sometimes fail to disconnect it, resulting in denial of service. Mitigation If your application is running behind a reverse proxy, or We...

7.5CVSS7.3AI score0.15519EPSS
Exploits0References8
RedhatCVE
RedhatCVE
•added 2023/07/19 10:52 a.m.•53 views

CVE-2023-29824

A flaw was found in SciPy, where it is vulnerable to a denial of service caused by a use-after-free bug in the PyFindObjects function. By sending a specially crafted request, an attacker can cause a denial of service condition...

7CVSS8.5AI score0.0111EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/07/12 9:36 a.m.•53 views

CVE-2022-24834

A heap-based buffer overflow flaw was found in Redis. This flaw allows a local authenticated attacker user or attacker to execute a specially crafted Lua script in Redis. This attack triggers a heap overflow in the cjson and cmsgpack libraries, resulting in heap corruption and potential remote co...

7CVSS8.8AI score0.4292EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/07/05 3:17 p.m.•53 views

CVE-2023-30581

A vulnerability has been discovered in Node.js, where the use of proto in process.mainModule.proto.require can bypass the policy mechanism and require modules outside of the policy.json definition...

7.5CVSS7.6AI score0.0105EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/06 6:59 a.m.•53 views

CVE-2023-26604

A vulnerability was found in the systemd package. The systemd package does not adequately block local privilege escalation for some Sudo configurations, for example, plausible sudoers files, in which the "systemctl status" command may be executed. Specifically, systemd does not set LESSSECURE to ...

7.1CVSS7.4AI score0.01051EPSS
Exploits4References6
Total number of security vulnerabilities5000