Lucene search
K
RedhatcveMost viewed

206309 matches found

RedhatCVE
RedhatCVE
added 2022/07/15 4:7 a.m.50 views

CVE-2022-31097

A Cross-site scripting XSS vulnerability was found in the Unified Alerting feature of Grafana. This stored XSS can elevate privileges from Editor to Admin. Mitigation Disable Unified alerting. https://grafana.com/docs/grafana/latest/setup-grafana/configure-grafana/unifiedalerting...

7.3CVSS6.8AI score0.68603EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/06/16 1:59 p.m.50 views

CVE-2022-2042

A heap use-after-free vulnerability was found in Vim's skipwhite function of the src/charset.c file. This flaw occurs because of an uninitialized attribute value and freed memory in the spell command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a...

7.8CVSS3.1AI score0.01411EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/06/14 2:59 p.m.50 views

CVE-2022-1976

A flaw was found in the Linux kernel’s implementation of IO-URING. This flaw allows an attacker with local executable permission to create a string of requests that can cause a use-after-free flaw within the kernel. This issue leads to memory corruption and possible privilege escalation. Mitigati...

7.8CVSS1.2AI score0.00229EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/06/07 2:29 a.m.51 views

CVE-2022-30321

A flaw was found in go-getter. Several vulnerabilities were identified in the way go-getter processes HTTP responses, response headers, and password-protected ZIP files. This flaw allows an attacker to bypass certain configuration settings and may lead to a denial of service. Mitigation The fix...

8.6CVSS2AI score0.03054EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/23 9:19 a.m.50 views

CVE-2022-1802

The Mozilla Foundation Security Advisory describes this flaw as: If an attacker was able to corrupt the methods of an Array object in JavaScript via prototype pollution, they could have achieved execution of attacker-controlled JavaScript code in a privileged context...

8.8CVSS3.9AI score0.26709EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/20 10:46 p.m.50 views

CVE-2022-22995

The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code...

10CVSS4.3AI score0.02656EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/05/19 4:48 a.m.50 views

CVE-2022-1735

A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a heap buffer overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts with -s scriptin are not...

7.8CVSS5.4AI score0.01252EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/05/18 5:24 p.m.50 views

CVE-2021-36203

The affected product may allow an attacker to identify and forge requests to internal systems by way of a specially crafted request...

9.1CVSS4.3AI score0.0081EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2022/05/14 11:41 a.m.50 views

CVE-2020-10749

A vulnerability was found in affected container networking implementations that allow malicious containers in Kubernetes clusters to perform man-in-the-middle MitM attacks. A malicious container can exploit this flaw by sending “rogue” IPv6 router advertisements to the host or other containers, t...

6CVSS2.7AI score0.02428EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/05/07 2:9 p.m.50 views

CVE-2021-44717

There's a flaw in golang's syscall.ForkExec interface. An attacker who manages to first cause a file descriptor exhaustion for the process, then cause syscall.ForkExec to be called repeatedly, could compromise data integrity and/or confidentiality in a somewhat uncontrolled way in programs linked...

5.8CVSS3.2AI score0.01857EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/05/06 6:0 p.m.50 views

CVE-2022-21427

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: FTS. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS2AI score0.01939EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/05/06 4:55 p.m.50 views

CVE-2022-21462

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS1.8AI score0.01216EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2022/04/29 12:46 p.m.50 views

CVE-2022-29810

A flaw was found in go-getter, where the go-getter library can write SSH credentials into its log file. This flaw allows a local user with access to read log files to read sensitive credentials, which may lead to privilege escalation or account takeover...

5.5CVSS3.3AI score0.00403EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/04/27 8:24 a.m.50 views

CVE-2022-24882

A vulnerability was found in freerdp. The flaw occurs because the NT LAN Manager NTLM authentication does not properly abort when someone provides an empty password value. This issue exposes an improper authenticating vulnerability...

9.1CVSS3.4AI score0.02674EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/04/13 5:22 a.m.50 views

CVE-2021-28544

A flaw was found in Subversion. When using path-based authorization authz, the helper function detectchanged does not omit potentially sensitive information from log messages. In particular, if a node is copied from a protected location, its 'copyfrom' path the path to the protected location is...

4.3CVSS5.7AI score0.02788EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/04/11 3:23 p.m.50 views

CVE-2022-28202

A flaw was found in MediaWiki. The widthheight, widthheightpage, and nbytes properties of messages are not escaped when used in galleries or Special:RevisionDelete...

6.1CVSS1.8AI score0.01152EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/04/11 8:20 a.m.50 views

CVE-2022-28796

A use-after-free flaw was found in the Linux kernel’s journaling layer of the ext4 and OCFS2 file system functionality in the way a user can trigger a race condition during writing to the file system. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7CVSS6.5AI score0.00318EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/03/16 7:17 p.m.50 views

CVE-2022-24921

A stack overflow flaw was found in Golang's regexp module, which can crash the runtime if the application using regexp accepts very long or arbitrarily long regexps from untrusted sources that have sufficient nesting depths. To exploit this vulnerability, an attacker would need to send large...

7.5CVSS2.4AI score0.03255EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/03/08 1:43 p.m.50 views

CVE-2022-26485

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: Removing an XSLT parameter during processing could have led to an exploitable use-after-free issue. There were reports of attacks in the wild abusing this flaw...

8.8CVSS1.7AI score0.14261EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2022/02/25 3:18 p.m.50 views

CVE-2022-26127

A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the input packet length in the babelpacketexamin function in babeld/message.c...

8.1CVSS4AI score0.01014EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2022/01/31 8:47 p.m.50 views

CVE-2022-22594

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information...

7.5CVSS2.3AI score0.00815EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/01/26 2:53 p.m.50 views

CVE-2021-46195

A flaw was discovered in the GNU libiberty library within the demanglepath function in rust-demangle.c, as distributed in the GNU Compiler Collection GCC. This flaw allows a crafted symbol to cause stack memory to be exhausted, leading to a crash...

5.5CVSS2.3AI score0.00779EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/11/29 6:32 a.m.50 views

CVE-2021-42575

The OWASP Java HTML Sanitizer before 20211018.1 does not properly enforce policies associated with the SELECT, STYLE, and OPTION elements...

9.8CVSS1.2AI score0.02844EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/11/10 3:37 a.m.50 views

CVE-2021-23192

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements. Mitigation Setting dcesrv:max auth states=0 in the...

7.5CVSS7.4AI score0.01953EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/11/08 12:50 p.m.50 views

CVE-2021-3933

An integer overflow could occur when OpenEXR processes a crafted file on systems where sizet is less than 64 bits. This issue could cause an invalid bytesPerLine and maxBytesPerLine value, which leads to problems with application stability or other attack paths...

5.5CVSS6.3AI score0.00849EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/09/30 8:24 p.m.50 views

CVE-2021-41798

Cross-site scripting XSS vulnerability was found in mediawiki. Due to insufficient sanitization of user-supplied data in Special:Search function a remote attacker can permanently inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website...

6.1CVSS2.8AI score0.01302EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/09/14 3:9 p.m.50 views

CVE-2021-37137

A flaw was found in the Netty's netty-codec due to unrestricted chunk lengths in the SnappyFrameDecoder. By sending a specially-crafted input, a remote attacker could cause excessive memory usage resulting in a denial of service...

7.5CVSS3.6AI score0.0628EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/09/06 6:4 p.m.50 views

CVE-2021-39262

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS2.2AI score0.00418EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/09/03 1:39 p.m.50 views

CVE-2021-23438

This affects the package mpath before 0.8.4. A type confusion vulnerability can lead to a bypass of CVE-2018-16490. In particular, the condition ignoreProperties.indexOfpartsi !== -1 returns -1 if partsi is 'proto'. This is because the method that has been called if the input is an array is...

9.8CVSS2.5AI score0.01723EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2021/08/30 11:14 a.m.50 views

CVE-2021-3748

A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to numbuffers being set after the virtqueue elem has been unmapped. A malicious guest could use this flaw to crash QEMU, resulting i...

7.5CVSS1.6AI score0.00522EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/23 8:6 a.m.50 views

CVE-2021-3732

A flaw was found in the Linux kernel’s OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain access to hidden files that should not be accessible. Mitigation Mitigation for this issue is either not available or the currently...

5.5CVSS0.5AI score0.00326EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/08/22 1:14 p.m.50 views

CVE-2019-14843

A flaw was found in Wildfly Security Manager, running under JDK 11 or 8, that authorized requests for any requester. This flaw could be used by a malicious app deployed on the app server to access unauthorized information and possibly conduct further attacks. Mitigation This flaw only affects the...

8.8CVSS3.4AI score0.0119EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/22 1:11 p.m.50 views

CVE-2019-12384

A flaw was discovered in FasterXML jackson-databind in versions prior to 2.9.9. The vulnerability would permit polymorphic deserialization of malicious objects using the logback-core gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when...

8.1CVSS1AI score0.45205EPSS
Exploits2References3
RedhatCVE
RedhatCVE
added 2021/08/18 6:5 p.m.50 views

CVE-2021-38598

A vulnerability was found in neutron's Linux bridge driver on newer Netfilter-based platforms. This flaw allows a malicious user in control of a server instance connected to the virtual switch to send a crafted packet and impersonate hardware addresses of other systems on the network. The highest...

9.1CVSS8.5AI score0.0121EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2021/08/18 5:34 p.m.50 views

CVE-2021-29991

The Mozilla Foundation Security Advisory describes this flaw as: Firefox incorrectly accepted a newline in a HTTP/3 header, interpretting it as two separate headers. This allowed for a header splitting attack against servers using HTTP/3...

8.1CVSS7.7AI score0.00885EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/08/18 1:34 p.m.50 views

CVE-2021-39240

A flaw was found in haproxy. An input validation flaw when processing HTTP/2 requests causes haproxy to not ensure that the scheme and path portions of a URI have the expected characters. This may cause specially crafted input to bypass implemented security restrictions. The highest threat from...

7.5CVSS2AI score0.02319EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/07/28 1:53 p.m.50 views

CVE-2021-30689

A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Safari 14.1.1, macOS Big Sur 11.4, watchOS 7.5. Processing maliciously crafted web content may lead to universal cross site scripting...

8.1CVSS2AI score0.01105EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/06/27 12:32 p.m.50 views

CVE-2021-29946

Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header. This vulnerability affects Firefox ESR 78.10, Thunderbird 78.10, and Firefox 88...

8.8CVSS2.3AI score0.01167EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/06/21 2:59 p.m.50 views

CVE-2020-28200

The Sieve engine in Dovecot before 2.3.15 allows Uncontrolled Resource Consumption, as demonstrated by a situation with a complex regular expression for the regex extension...

4.3CVSS3.9AI score0.01968EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/05/26 1:13 p.m.50 views

CVE-2020-26556

A flaw was found in the Linux kernel’s authentication protocol in the Bluetooth® Mesh Profile Specification. A vulnerability occurs if the AuthValue is identified during the provisioning procedure, even if the AuthValue is selected randomly. This flaw allows an attacker to identify the AuthValue...

7.5CVSS2AI score0.00907EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/05/25 2:57 p.m.50 views

CVE-2021-33502

A flaw was found in normalize-url. Node.js has a ReDoS regular expression denial of service issue because it has exponential performance for data...

7.5CVSS3.2AI score0.01705EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/05/19 12:27 a.m.50 views

CVE-2021-29623

There's a flaw in exiv2's isWebPType function. An attacker who submits a crafted file to be processed by an application linked with exiv2 could trigger an out-of-bounds read of unitialized memory, saving it to the stack. The great impact of this flaw is most likely to application availability wit...

4.3CVSS3.2AI score0.01104EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/05/11 8:55 p.m.50 views

CVE-2021-31525

A vulnerability was detected in net/http of the Go standard library when parsing very large HTTP header values, causing a crash and subsequent denial of service. This vulnerability affects both clients and servers written in Go, however, servers are only vulnerable if the value of MaxHeaderBytes...

5.9CVSS2.3AI score0.03692EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/05/11 8:54 p.m.50 views

CVE-2020-36327

A flaw was found in the way Bundler determined the source repository when installing dependencies of source-restricted gem packages. In configurations that use multiple gem repositories and explicitly define from which source repository certain gems are to be installed, a dependency of a...

9.3CVSS8.7AI score0.06307EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2021/04/29 11:50 p.m.50 views

CVE-2021-22139

Kibana versions before 7.12.1 contain a denial of service vulnerability was found in the webhook actions due to a lack of timeout or a limit on the request size. An attacker with permissions to create webhook actions could drain the Kibana host connection pool, making Kibana unavailable for all...

6.5CVSS3.9AI score0.00999EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/04/28 7:36 p.m.50 views

CVE-2019-25033

A flaw was found in unbound. An integer overflow in the regional allocator via the ALIGNUP macro may lead to a buffer overflow if the size can be controlled by an attacker. The highest threat from this vulnerability is to data confidentiality and integrity as well as service availability...

9.8CVSS4AI score0.01783EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/03/30 10:27 a.m.50 views

CVE-2021-3456

An improper authorization handling flaw was found in Foreman. The Salt plugin for the smart-proxy allows foreman clients to execute actions that should be limited to the Foreman Server. This flaw allows an authenticated local attacker to access and delete limited resources and also causes a denia...

7.1CVSS2.9AI score0.00194EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2021/03/18 5:57 p.m.50 views

CVE-2021-28660

A flaw was found in the Linux kernel. The rtwwxsetscan driver allows writing beyond the end of the -ssid array. The highest threat from this vulnerability is to data confidentiality and integrity as well system availability...

8.8CVSS7.7AI score0.01316EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/03/02 6:3 p.m.50 views

CVE-2020-14372

A flaw was found in GRUB 2, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table SSDT containing code to overwrite the Linux kernel lockdown variable content direct...

7.5CVSS7.2AI score0.01738EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2021/01/25 11:53 a.m.50 views

CVE-2020-0431

A flaw out of bounds write in the Linux kernel human interface devices subsystem was found in the way user calls find key code by index. A local user could use this flaw to crash the system or escalate privileges on the system. Mitigation Mitigation for this issue is either not available or the...

6.7CVSS0.6AI score0.00223EPSS
Exploits0References4
Total number of security vulnerabilities5000