Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2020/03/24 2:31 p.m.•51 views

CVE-2019-8844

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. Processing maliciously crafted web content may le...

9.3CVSS2.4AI score0.02091EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/03/23 8:1 p.m.•51 views

CVE-2020-9548

A flaw was found in jackson-databind 2.x. FasterXML jackson-databind 2.x mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

9.8CVSS2.3AI score0.18345EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/03/10 3:41 p.m.•51 views

CVE-2020-10255

A Rowhammer flaw was found in latest DDR4 DRAM hardware chips. These chips implement Target Row Refresh TRR mitigation to prevent a Rowhammer flaw-induced bit corruption across memory space. An unprivileged system user may leverage this flaw and use Rowhammer attack variants to induce bit...

9.3CVSS1.9AI score0.02515EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2020/03/05 5:41 p.m.•51 views

CVE-2020-10029

A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability...

5.7CVSS3.7AI score0.00758EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/03/01 7:36 p.m.•51 views

CVE-2019-2999

Vulnerability in the Java SE product of Oracle Java SE component: Javadoc. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

4.7CVSS2.8AI score0.0267EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/13 12:15 p.m.•51 views

CVE-2020-8648

A use-after-free flaw was found in the Linux kernel console driver when using the copy-paste buffer. This flaw allows a local user to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the Red Hat Product Security criteria...

7.1CVSS6.7AI score0.00661EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/01/16 8:9 a.m.•51 views

CVE-2020-7039

A heap buffer overflow issue was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the tcpemu routine while emulating IRC and other protocols. An attacker could use this flaw to crash the QEMU process on the host, resulting in a denial of service or potential...

6.8CVSS2AI score0.03566EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/09 7:9 p.m.•51 views

CVE-2020-5311

An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system...

9.8CVSS4.5AI score0.04212EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/05 9:56 a.m.•51 views

CVE-2019-19062

A flaw was found in the Linux kernel. The cryptoreport function mishandles resource cleanup on error. A local attacker able to induce the error conditions could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate...

4.7CVSS0.8AI score0.00633EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/04 12:48 a.m.•51 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS2.2AI score0.01892EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2019/11/21 10:37 a.m.•51 views

CVE-2019-19074

A memory leak in the ath9kwmicmd function in drivers/net/wireless/ath/ath9k/wmi.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption, aka CID-728c1e2a05e4...

7.8CVSS5.5AI score0.04433EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/10/12 1:30 a.m.•51 views

CVE-2017-16994

The walkhugetlbrange function in 'mm/pagewalk.c' file in the Linux kernel from v4.0-rc1 through v4.15-rc1 mishandles holes in hugetlb ranges. This allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore system call...

5.5CVSS3AI score0.02084EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2019/10/10 11:49 p.m.•51 views

CVE-2017-7518

A flaw was found in the way the Linux KVM module processed the trap flagTF bit in EFLAGS during emulation of the syscall instruction, which leads to a debug exceptionDB being raised in the guest stack. A user/process inside a guest could use this flaw to potentially escalate their privileges insi...

7.8CVSS1.7AI score0.00698EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/10 4:11 a.m.•51 views

CVE-2018-2783

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS2.2AI score0.03966EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/08 10:56 a.m.•51 views

CVE-2018-2798

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS2.6AI score0.078EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/08 7:31 a.m.•51 views

CVE-2019-14846

Ansible was logging at the DEBUG level which lead to a disclosure of credentials if a plugin used a library that logged credentials at the DEBUG level. This flaw does not affect Ansible modules, as those are executed in a separate process...

7.8CVSS2.6AI score0.00509EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/09/10 2:22 p.m.•51 views

CVE-2019-15916

A flaw that allowed an attacker to leak kernel memory was found in the network subsystem where an attacker with permissions to create tun/tap devices can create a denial of service and panic the system...

7.8CVSS4.6AI score0.03784EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/08/20 8:52 a.m.•51 views

CVE-2018-20976

A flaw was found in the Linux kernel's implementation of the XFS filesystem. A key data structure sb-sfsinfo may not be de-allocated when the system is under memory pressure. This same data structure is then used at a later time during filesystem operations. This could allow a local attacker who ...

7.8CVSS2.2AI score0.00607EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/02/26 11:19 a.m.•51 views

CVE-2018-20796

In the GNU C Library aka glibc or libc6 through 2.29, checkdstlimitscalcpos1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by '\227|\\1\\1|t1|\\\2537+' in grep...

7.5CVSS3.7AI score0.05804EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/02/06 8:20 a.m.•51 views

CVE-2019-3823

An out-of-bounds read flaw was found in the way curl handled certain SMTP responses. A remote attacker could use this flaw to crash curl. Mitigation Do not use SMTP authentication with curl...

7.5CVSS0.9AI score0.04286EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2018/09/25 3:23 p.m.•51 views

CVE-2018-17407

An issue was discovered in t1checkunusualcharstring functions in writet1.c files in TeX Live before 2018-09-21. A buffer overflow in the handling of Type 1 fonts allows arbitrary code execution when a malicious font is loaded by one of the vulnerable tools: pdflatex, pdftex, dvips, or luatex...

7.8CVSS2.3AI score0.02058EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/08/28 12:51 a.m.•51 views

CVE-2018-15910

It was discovered that the type of the LockDistillerParams parameter is not properly verified. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or, possibly, execute arbitrary code in the ghostscript context via a specially crafted PostScript document...

7.8CVSS1.8AI score0.03037EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/01/29 3:20 p.m.•51 views

CVE-2018-1000027

The Squid Software Foundation Squid HTTP Caching Proxy version prior to version 4.0.23 contains a NULL Pointer Dereference vulnerability in HTTP Response X-Forwarded-For header processing that can result in Denial of Service to all clients of the proxy. This attack appear to be exploitable via...

7.5CVSS1.7AI score0.13149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2018/01/22 10:59 p.m.•51 views

CVE-2017-15191

In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...

7.5CVSS1.8AI score0.02697EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/12/11 9:49 a.m.•51 views

CVE-2017-17458

It was found that mercurial was vulnerable to cross repositories modification. A specially crafted mercurial repository could trigger arbitrary commands on a client during commands such as clone or update. Mitigation Disable sub-repositories...

10CVSS3.4AI score0.06331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/11/30 7:49 a.m.•51 views

CVE-2017-1000405

A flaw was found in the patches used to fix the 'dirtycow' vulnerability CVE-2016-5195. An attacker, able to run local code, can exploit a race condition in transparent huge pages to modify usually read-only huge pages. Mitigation Disabling the use of zero page: It is possible to prevent the zero...

7.2CVSS7.5AI score0.83524EPSS
Exploits89References1
RedhatCVE
RedhatCVE
•added 2017/07/04 10:48 a.m.•51 views

CVE-2017-10788

The DBD::mysql module through 4.043 for Perl allows remote attackers to cause a denial of service use-after-free and application crash or possibly have unspecified other impact by triggering 1 certain error responses from a MySQL server or 2 a loss of a network connection to a MySQL server. The...

9.8CVSS6.1AI score0.04629EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/06/19 4:18 p.m.•51 views

CVE-2017-1000365

The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMITSTACK/RLIMITINFINITY, but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation...

7.8CVSS5.5AI score0.00899EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/04/27 9:48 a.m.•51 views

CVE-2017-1000353

Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remote code execution. An unauthenticated remote code execution vulnerability allowed attackers to transfer a serialized Java SignedObject object to the Jenkins CLI, that would be deserialized...

9.8CVSS3.3AI score0.99686EPSS
Exploits36References2
RedhatCVE
RedhatCVE
•added 2017/04/20 6:19 a.m.•51 views

CVE-2017-5443

An out-of-bounds write vulnerability while decoding improperly formed BinHex format archives. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox 53...

9.8CVSS2.5AI score0.03123EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/04/20 6:19 a.m.•51 views

CVE-2017-5445

A vulnerability while parsing "application/http-index-format" format content where uninitialized values are used to create an array. This could allow the reading of uninitialized memory into the arrays affected. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and...

7.5CVSS4.2AI score0.02698EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/01/04 11:48 a.m.•51 views

CVE-2016-10095

Stack-based buffer overflow in the TIFFVGetField function in tifdir.c in LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7 and 4.0.8 allows remote attackers to cause a denial of service crash via a crafted TIFF file...

9.8CVSS4.8AI score0.04187EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2016/12/20 8:17 a.m.•51 views

CVE-2016-10010

sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local users to gain privileges via unspecified vectors, related to serverloop.c...

7.5CVSS6AI score0.0424EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2016/12/09 8:47 a.m.•51 views

CVE-2016-9576

It was found that the blkrqmapuseriov function in the Linux kernel's block device implementation did not properly restrict the type of iterator, which could allow a local attacker to read or write to arbitrary kernel memory locations or cause a denial of service use-after-free by leveraging write...

7.8CVSS4.6AI score0.00437EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/08/03 12:18 p.m.•51 views

CVE-2016-6301

The recvandprocessclientpkt function in networking/ntpd.c in busybox allows remote attackers to cause a denial of service CPU and bandwidth consumption via a forged NTP packet, which triggers a communication loop...

7.8CVSS5.8AI score0.08894EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2016/07/25 2:19 p.m.•51 views

CVE-2016-6295

ext/snmp/snmp.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to cause a denial of service use-after-free and application crash or possibly have unspecified other impac...

9.8CVSS7.2AI score0.0926EPSS
Exploits6References1
RedhatCVE
RedhatCVE
•added 2016/05/03 2:48 p.m.•51 views

CVE-2016-2107

It was discovered that OpenSSL leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when the connection used the AES CBC cipher suite and the server supported AES-NI. A remote attacker could possibly use this flaw to retrieve plain text from encrypted packets by...

2.6CVSS2AI score0.89058EPSS
Exploits6References2
RedhatCVE
RedhatCVE
•added 2026/05/19 10:47 a.m.•50 views

CVE-2026-37978

A flaw was found in Keycloak. A low-privilege administrator with the 'view-clients' role can exploit this by invoking the 'evaluate-scopes' Admin API endpoints with an arbitrary user ID userId parameter. This vulnerability allows for cross-role personally identifiable information PII leakage,...

4.9CVSS5.8AI score0.00398EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2025/12/17 12:55 a.m.•50 views

CVE-2025-67722

FreePBX is an open-source web-based graphical user interface GUI that manages Asterisk. Prior to versions 16.0.45 and 17.0.24 of the FreePBX framework, an authenticated local privilege escalation exists in the deprecated FreePBX startup script amportal. In the deprecated amportal utility, the...

8.4CVSS6.8AI score0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/27 8:51 p.m.•50 views

CVE-2025-21756

In the Linux kernel, the following vulnerability has been resolved: vsock: Keep the binding until socket destruction Preserve sockets bindings; this includes both resulting from an explicit bind and those implicitly bound through autobind during connect. Prevents socket unbinding during a transpo...

7.8CVSS7.4AI score0.00844EPSS
Exploits3References4
RedhatCVE
RedhatCVE
•added 2024/09/05 7:15 a.m.•50 views

CVE-2024-45492

A flaw was found in libexpat's internal nextScaffoldPart function in xmlparse.c. It can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX equals SIZEMAX. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat...

6.2CVSS6.8AI score0.01393EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2024/08/30 1:12 p.m.•50 views

CVE-2024-45490

A flaw was found in libexpat's xmlparse.c component. This vulnerability allows an attacker to cause improper handling of XML data by providing a negative length value to the XMLParseBuffer function. Mitigation Mitigation for this issue is either not available or the currently available options do...

7.5CVSS9.1AI score0.01686EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2024/07/22 5:37 p.m.•50 views

CVE-2024-40898

A flaw was found in HTTPd on Windows systems. This issue potentially allows NTLM hashes to be leaked via modrewrite in server/vhost context to a malicious server via Server-side request forgery SSRF and malicious requests or content. Mitigation Mitigation for this issue is either not available or...

7.5CVSS8.9AI score0.01536EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2024/06/24 1:53 p.m.•50 views

CVE-2024-39331

A flaw was found in Emacs. Arbitrary shell commands can be executed without prompting when an Org mode file is opened or when the Org mode is enabled, when Emacs is used as an email client, this issue can be triggered when previewing email attachments. Mitigation Do not open Org mode files or...

7.8CVSS6.2AI score0.01323EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/04/03 11:45 p.m.•50 views

CVE-2024-26720

A vulnerability was found in the wbdirtylimits function in the Linux kernel memory management mm subsystem which can lead to a divide-by-zero error. This issue could lead to a potential kernel crash...

5.5CVSS6.2AI score
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/03/27 5:56 p.m.•50 views

CVE-2024-3019

A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue can only be exploited when pmproxy is running. By default, pmproxy is not running and needs to be...

8.8CVSS8.8AI score0.01002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/03/15 10:37 p.m.•50 views

CVE-2024-23206

A vulnerability was found in WebKitGTK. This flaw allows a remote attacker to bypass the security restriction by using a specially crafted malicious website to fingerprint the victim...

6.5CVSS7.5AI score0.00921EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/03/14 6:39 p.m.•50 views

CVE-2024-28849

A vulnerability was found in the follow-redirects package. While processing the cross-domain redirection, follow-redirects clears authorization headers, however, it misses clearing proxy-authentication headers, which contain credentials as well. This issue may lead to credential leaking, having a...

6.5CVSS6.2AI score0.01044EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2024/02/22 3:2 p.m.•50 views

CVE-2024-26582

A use-after-free vulnerability was found in the tls subsystem of the Linux kernel. The tlsdecryptsg function doesn't take references on the pages from clearskb, so the putpage in tlsdecryptdone releases them and a use-after-free can be triggered in processrxlist when trying to read from the...

5.8CVSS7AI score0.00254EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/01/25 8:0 p.m.•50 views

CVE-2024-23638

A flaw was found in Squid, resulting in a potential denial of service attack targeting Cache Manager error responses. This issue enables a trusted client to execute a denial of service by manipulating the generation of error pages for Client Manager reports. Mitigation Restrict entry to Cache...

6.5CVSS7.1AI score0.6005EPSS
Exploits1References9
Total number of security vulnerabilities5000