Lucene search
K
RedhatcveMost viewed

206305 matches found

RedhatCVE
RedhatCVE
•added 2019/11/21 11:37 a.m.•53 views

CVE-2019-19047

A flaw was found in the way the Mellanox 5th generation network adapters ConnectX series core driver in the Linux kernel handled resource cleanup in the mlx5fwfatalreporterdump function. This flaw allows an attacker with the ability to trigger errors in the mlx5crdumpcollect function to crash the...

5.5CVSS1.3AI score0.00529EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/11 12:11 a.m.•53 views

CVE-2017-12190

It was found that in the Linux kernel through v4.14-rc5, biomapuseriov and biounmapuser in 'block/bio.c' do unbalanced pages refcounting if IO vector has small consecutive buffers belonging to the same page. bioaddpcpage merges them into one, but the page reference is never dropped, causing a...

6.5CVSS3.3AI score0.00531EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/10 5:55 p.m.•53 views

CVE-2019-5953

A buffer overflow flaw was found in the GNU Wget in version 1.20.1 and earlier when processing Internationalized Resource Identifiers. This flaw allows an attacker to execute arbitrary code or cause a denial of service...

9.8CVSS6.8AI score0.05751EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/08 10:36 p.m.•53 views

CVE-2018-2633

It was discovered that the LDAPCertStore class in the JNDI component of OpenJDK failed to securely handle LDAP referrals. An attacker could possibly use this flaw to make it fetch attacker controlled certificate data...

8.3CVSS1.3AI score0.0565EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/01/08 9:20 p.m.•53 views

CVE-2019-0545

An information disclosure vulnerability exists in .NET Framework and .NET Core which allows bypassing Cross-origin Resource Sharing CORS configurations, aka ".NET Framework Information Disclosure Vulnerability." This affects Microsoft .NET Framework 2.0, Microsoft .NET Framework 3.0, Microsoft .N...

7.5CVSS1.4AI score0.09611EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/08/03 7:18 p.m.•53 views

CVE-2018-14883

An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer over-read in exifthumbnailextract of exif.c...

7.5CVSS3.1AI score0.08975EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2018/03/27 11:48 a.m.•53 views

CVE-2017-18249

The addfreenid function in fs/f2fs/node.c in the Linux kernel, before 4.12, does not properly track an allocated nid. This allows local users to cause a denial of service race condition or possibly have unspecified other impacts via concurrent threads...

7CVSS5.9AI score0.00324EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2018/01/12 4:49 a.m.•53 views

CVE-2018-0764

Microsoft .NET Framework 1.1, 2.0, 3.0, 3.5, 3.5.1, 4, 4.5, 4.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2 and 5.7 and .NET Core 1.0. 1.1 and 2.0 allow a denial of service vulnerability due to the way XML documents are processed, aka ".NET and .NET Core Denial Of Service Vulnerability". This CVE is unique from...

7.5CVSS3.3AI score0.08885EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/11/10 6:50 p.m.•53 views

CVE-2017-16642

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...

7.5CVSS2.5AI score0.26373EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2017/09/01 4:48 p.m.•53 views

CVE-2017-14106

A divide-by-zero vulnerability was found in the tcpselectwindow function in the Linux kernel. This can result in a kernel panic causing a local denial of service...

5.5CVSS2.8AI score0.00445EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/07/20 12:48 p.m.•53 views

CVE-2017-10684

In ncurses 6.0, there is a stack-based buffer overflow in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

9.8CVSS7.5AI score0.04876EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/07/20 8:49 a.m.•53 views

CVE-2017-7541

Kernel memory corruption due to a buffer overflow was found in brcmfcfg80211mgmttx function in Linux kernels from v3.9-rc1 to v4.13-rc1. The vulnerability can be triggered by sending a crafted NL80211CMDFRAME packet via netlink. This flaw is unlikely to be triggered remotely as certain userspace...

7.8CVSS3.4AI score0.00547EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/07/18 8:21 p.m.•53 views

CVE-2017-10087

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS1.8AI score0.02555EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/10/10 8:17 a.m.•53 views

CVE-2016-5425

It was discovered that the Tomcat packages installed configuration file /usr/lib/tmpfiles.d/tomcat.conf writeable to the tomcat group. A member of the group or a malicious web application deployed on Tomcat could use this flaw to escalate their privileges...

7.8CVSS1.7AI score0.03782EPSS
Exploits8References2
RedhatCVE
RedhatCVE
•added 2016/08/18 9:3 p.m.•53 views

CVE-2016-6828

A use-after-free vulnerability was found in tcpxmitretransmitqueue and other tcp functions. This condition could allow an attacker to send an incorrect selective acknowledgment to existing connections, possibly resetting a connection...

5.5CVSS3.1AI score0.01181EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2016/07/20 7:48 a.m.•53 views

CVE-2016-3610

Unspecified vulnerability in Oracle Java SE 8u92 and Java SE Embedded 8u91 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to Libraries, a different vulnerability than CVE-2016-3598...

9.6CVSS7.4AI score0.0669EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2015/10/30 9:25 a.m.•53 views

CVE-2007-1888

Buffer overflow in the sqlitedecodebinary function in src/encode.c in SQLite 2, as used by PHP 4.x through 5.x and other applications, allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter. NOTE: some PHP installations use a bundled version of sqlite...

7.5CVSS8.4AI score0.03486EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2025/11/18 12:11 a.m.•52 views

CVE-2025-63918

PDFPatcher executable does not validate user-supplied file paths, allowing directory traversal attacks allowing attackers to upload arbitrary files to arbitrary locations...

6.2CVSS7.2AI score0.00349EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2025/05/22 7:37 p.m.•52 views

CVE-2021-29934

An issue was discovered in PartialReader in the uuod crate before 0.0.4 for Rust. Attackers can read the contents of uninitialized memory locations via a user-provided Read operation...

7.5CVSS6.7AI score0.009EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2025/05/11 4:10 p.m.•52 views

CVE-2024-13961

Link Following Local Privilege Escalation Vulnerability in TuneupSvc in Avast Cleanup Premium Version 24.2.16593.17810 on Windows 10 Pro x64 allows local attackers to escalate privileges and execute arbitrary code in the context of SYSTEM via creating a symbolic link and leveraging a TOCTTOU...

7.8CVSS7.8AI score0.00142EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/03/14 7:56 p.m.•52 views

CVE-2025-2078

The BlogBuzzTime for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissio...

4.8CVSS5.7AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2024/08/07 4:17 p.m.•52 views

CVE-2024-42005

A flaw was found in Django. The QuerySet.values and QuerySet.valueslist methods on models with a JSONField were subject to SQL injection in column aliases via a crafted JSON object key as a passed arg. Mitigation Mitigation for this issue is either not available or the currently available options...

7.3CVSS9.4AI score0.01227EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/05/29 9:49 a.m.•52 views

CVE-2024-36107

A sensitive information disclosure vulnerability was found in MinIO. Headers can be used to determine if an object exists or not on the server on a specific bucket and gain access to sensitive information. Mitigation Mitigation for this issue is either not available or the currently available...

5.3CVSS5.2AI score0.00549EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/05/23 11:54 p.m.•52 views

CVE-2024-4947

A type confusion vulnerability was found in the Chromium web browser. This flaw allows an unauthenticated, remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Mitigation Until updated packages are released for Fedora and EPEL, consider temporarily swapping to an...

8.8CVSS8.7AI score0.15111EPSS
Exploits2References5
RedhatCVE
RedhatCVE
•added 2024/05/01 5:22 p.m.•52 views

CVE-2024-26945

In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix nrcpus nriaa case If nrcpus nriaa, the calculated cpusperiaa will be 0, which causes a divide-by-0 in rebalancewqtable. Make sure cpusperiaa is 1 in that case, and also in the nriaa == 0 case, even though...

5.5CVSS7.1AI score0.00238EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/03/13 12:12 p.m.•52 views

CVE-2024-21392

A vulnerability was found in dotnet. The YARP HTTP/2 WebSocket support in .NET Core can cause a denial of service DoS. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and...

7.5CVSS7.1AI score0.03065EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/03/04 5:26 p.m.•52 views

CVE-2024-23307

Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow...

4.4CVSS7.2AI score0.00585EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2024/01/15 3:25 p.m.•52 views

CVE-2024-0562

A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdiunregister is called to stop further write-back and waits for associated delayed work to complete. However, wbinodewritebackend may schedule bandwidth estimation work after this has completed, which can result in the...

7.8CVSS7.3AI score0.00254EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/11/16 1:45 p.m.•52 views

CVE-2023-6176

A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their...

4.7CVSS4.6AI score0.00249EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/10/16 4:49 p.m.•52 views

CVE-2023-38552

When the Node.js policy feature checks the integrity of a resource against a trusted manifest, the application can intercept the operation and return a forged checksum to node's policy implementation, thus effectively disabling the integrity check...

7.5CVSS6.9AI score0.01107EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/08 10:18 p.m.•52 views

CVE-2023-35946

A flaw was found in Gradle that permits directory traversal in its evaluation of repository paths. This issue could allow a local attacker to overwrite a file in the dependency cache with malicious code. Mitigation Users unable to upgrade should use dependency verification to make this...

5.5CVSS6.5AI score0.00286EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/07 5:49 a.m.•52 views

CVE-2023-3978

A flaw was found in the Golang HTML package where it is vulnerable to Cross-site scripting caused by the improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's web browser within the security...

6.1CVSS6.4AI score0.00843EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2023/07/17 5:11 p.m.•52 views

CVE-2023-37946

A flaw was found in the Jenkins OpenShift Login Plugin. Affected versions of this plugin could allow a remote attacker to bypass security restrictions caused by not invalidating the existing session on login. By persuading a victim to visit a specially crafted Web site, an attacker can gain...

8.8CVSS6.9AI score0.00717EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/21 7:16 a.m.•52 views

CVE-2023-35141

A flaw was found in Jenkins and Jenkins Long-Term Support LTS, where it could allow a remote, authenticated attacker to bypass security restrictions caused by the inclusion of insufficiently escaped user-provided values in part of the URL. An attacker can send a POST request to an unexpected...

8CVSS6.6AI score0.0086EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/08 1:44 p.m.•52 views

CVE-2023-3164

A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file...

5.5CVSS6.5AI score0.00317EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/05/12 12:23 p.m.•52 views

CVE-2023-2680

This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm that was actually missing the fix for CVE-2021-3750...

7.5CVSS7.9AI score0.0053EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/05/04 10:21 a.m.•52 views

CVE-2023-2513

A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors...

6.7CVSS6.4AI score0.00245EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/04/19 9:31 a.m.•52 views

CVE-2023-21939

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enterprise Edition: 20.3.9, 21.3.5 and 22.3.1. Easily exploitable...

5.3CVSS5.2AI score0.02474EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/04/11 7:0 p.m.•52 views

CVE-2023-1990

A use-after-free flaw was found in ndlcremove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This issue could allow an attacker to crash the system due to a race problem...

5.1CVSS5.7AI score0.0023EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/21 4:13 p.m.•52 views

CVE-2022-40540

A flaw was found in the Linux kernel. Memory corruption occurs to the buffer copy without checking the input size while loading firmware in qcommdtreadmetadata in drivers/soc/qcom/mdtloader.c...

7.8CVSS7.6AI score0.00166EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/03/20 8:43 a.m.•52 views

CVE-2022-48423

In the Linux kernel before 6.1.3, fs/ntfs3/record.c does not validate resident attribute names. An out-of-bounds write may occur...

7CVSS7.7AI score0.00266EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/14 11:43 p.m.•52 views

CVE-2022-41723

A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests...

7.5CVSS7.4AI score0.04561EPSS
Exploits0References10
RedhatCVE
RedhatCVE
•added 2023/03/09 12:14 a.m.•52 views

CVE-2023-27530

A flaw was found in rubygem-rack. This issue occurs in the Multipart MIME parsing code in Rack, which limits the number of file parts but does not limit the total number of parts that can be uploaded. Carefully crafted requests can abuse this and cause multipart parsing to take longer than...

7.5CVSS7.3AI score0.0183EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/03/01 6:6 p.m.•52 views

CVE-2023-22995

A memory overflow flaw was found in the Linux kernel’s Dual Role SuperSpeed USB controller driver in how a user registers a new USB device, which fails. This flaw allows a local user to crash the system...

4.7CVSS7.1AI score0.00301EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/01 2:29 a.m.•52 views

CVE-2022-33891

A flaw was found in Apache Spark. This flaw allows a malicious user to impersonate another user and jeopardize the environment by executing shell commands...

8.8CVSS4.8AI score0.92984EPSS
Exploits12References4
RedhatCVE
RedhatCVE
•added 2023/01/19 12:6 p.m.•52 views

CVE-2023-23598

The Mozilla Foundation Security Advisory describes this flaw as: Due to the Firefox GTK wrapper code's use of text/plain for drag data and GTK treating all text/plain MIMEs containing file URLs as being dragged a website could arbitrarily read a file via a call to DataTransfer.setData...

7.5CVSS2.3AI score0.00641EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/01/16 5:5 p.m.•52 views

CVE-2023-0054

An out-of-bounds write flaw was found in Vim, in the dostringsub function in the eval.c file. The issue occurs because of an invalid memory access due to a missing check of the return value of the vimregsub function when a specially crafted input is processed. This flaw allows an attacker who can...

7.8CVSS7.3AI score0.00469EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/12/26 12:34 p.m.•52 views

CVE-2021-35065

A vulnerability was found in the glob-parent package. Affected versions of this package are vulnerable to Regular expression Denial of Service ReDoS attacks, affecting system availability...

7.5CVSS7.8AI score0.01589EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/12/21 9:36 a.m.•52 views

CVE-2022-43552

A vulnerability was found in curl. In this issue, curl can be asked to tunnel all protocols virtually it supports through an HTTP proxy. HTTP proxies can deny these tunnel operations using an appropriate HTTP error response code. When getting denied to tunnel the specific SMB or TELNET protocols,...

5.9CVSS6.7AI score0.02511EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/12/20 5:5 p.m.•52 views

CVE-2022-38398

Server-Side Request Forgery SSRF vulnerability in Batik of Apache XML Graphics allows an attacker to load a url thru the jar protocol. This issue affects Apache XML Graphics Batik 1.14...

5.3CVSS3.5AI score0.02017EPSS
Exploits0References6
Total number of security vulnerabilities5000