Lucene search
K
RedhatcveMost viewed

206309 matches found

RedhatCVE
RedhatCVE
added 2021/01/25 7:53 a.m.50 views

CVE-2020-0404

A flaw linked list corruption in the Linux kernel for USB Video Class driver functionality was found in the way user connects web camera to the USB port. A local user could use this flaw to crash the system. Mitigation To mitigate this issue, prevent the module uvcvideo from being loaded. Please...

5.5CVSS0.00232EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/12/17 2:11 a.m.50 views

CVE-2020-29511

A flaw was found in go. Encoding and decoding of XML elements could lead to changes in the observed integrity. An attacker could use this flaw to trick applications which rely on element integrity for security decisions to make those decisions incorrectly. Known vulnerability use-cases are SAML a...

10CVSS2AI score0.04872EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2020/11/27 1:22 p.m.50 views

CVE-2020-29129

An out-of-bounds access issue was found in the SLiRP user networking implementation of QEMU. It could occur while processing ARP/NCSI packets, if the packet length was shorter than required to accommodate respective protocol headers and payload. A privileged guest user may use this flaw to...

4.3CVSS3.6AI score0.01443EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/11/24 4:32 p.m.50 views

CVE-2020-15437

A NULL pointer dereference flaw was found in the Linux kernel’s UART 8250 functionality, in the way certain hardware architectures handled situations where default ports 0x2E8, 0x2F8, 0x3E8, 0x3F8 are not available. This flaw allows a local user to crash the system. The highest threat from this...

4.9CVSS5.6AI score0.00436EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/11/24 10:51 a.m.50 views

CVE-2020-25669

A vulnerability was found in the Linux Kernel where the function sunkbdreinit having been scheduled by sunkbdinterrupt before sunkbd being freed. Though the dangling pointer is set to NULL in sunkbddisconnect, there is still an alias in sunkbdreinit causing Use After Free...

7.8CVSS2.1AI score0.00627EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/11/02 12:26 p.m.50 views

CVE-2020-27618

A flaw was found in glibc. If an attacker provides the iconv function with invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, it fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service...

2.1CVSS7.2AI score0.00887EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2020/10/23 8:5 p.m.50 views

CVE-2020-27673

An issue was discovered in the Linux kernel through 5.9.1, as used with Xen through 4.14.x. Guest OS users can cause a denial of service host OS hang via a high rate of events to dom0, aka CID-e99502f76271...

5.5CVSS5.9AI score0.0041EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/10/22 2:4 p.m.50 views

CVE-2020-3996

Velero prior to 1.4.3 and 1.5.2 in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users...

5.5CVSS3.8AI score0.00345EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/09/22 6:39 p.m.50 views

CVE-2020-25597

A logic flaw was found in the handling of event channel operations in Xen. Operations such as resetting all event channels may involve decreasing one of the bounds checked when determining validity. This flaw allows an unprivileged guest to crash Xen, leading to a denial of service DoS for the...

6.5CVSS0.4AI score0.00358EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/09/10 7:0 p.m.50 views

CVE-2020-25220

A flaw was found in the Linux kernel. The cgroups feature is affected by a use-after-free memory flaw that was not considered during the backport for CVE-2020-14356. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.2CVSS7.3AI score0.00965EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/09/07 10:19 a.m.50 views

CVE-2020-3901

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrar...

6.8CVSS2.2AI score0.01846EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/08/24 1:4 p.m.50 views

CVE-2020-14364

An out-of-bounds read/write access flaw was found in the USB emulator of the QEMU. This issue occurs while processing USB packets from a guest when USBDevice 'setuplen' exceeds its 'databuf4096' in the dotokenin, dotokenout routines. This flaw allows a guest user to crash the QEMU process,...

5CVSS2.6AI score0.05447EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2020/07/01 1:50 p.m.50 views

CVE-2020-8022

A Incorrect Default Permissions vulnerability in the packaging of tomcat on SUSE Enterprise Storage 5, SUSE Linux Enterprise Server 12-SP2-BCL, SUSE Linux Enterprise Server 12-SP2-LTSS, SUSE Linux Enterprise Server 12-SP3-BCL, SUSE Linux Enterprise Server 12-SP3-LTSS, SUSE Linux Enterprise Server...

7.2CVSS2.5AI score0.00857EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/06/23 3:25 p.m.50 views

CVE-2020-7656

A flaw was found in jquery in versions prior to 1.9.0. A cross-site scripting attack is possible as the load method fails to recognize and remove "...

4.3CVSS2.5AI score0.06273EPSS
Exploits4References3
RedhatCVE
RedhatCVE
added 2020/06/19 12:25 p.m.50 views

CVE-2020-14060

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.5. The interaction between serialization gadgets and typing is mishandled. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation The following conditions a...

6.8CVSS3.2AI score0.08607EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/06/10 1:24 p.m.50 views

CVE-2020-11078

A flaw was found in python-httplib2. An attacker controlling an unescaped part of uri for httplib2.Http.request could change request headers and body, send additional hidden requests to same server. This vulnerability impacts software that uses httplib2 with uri constructed by string concatenatio...

4.3CVSS2.1AI score0.05406EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2020/06/02 5:53 p.m.50 views

CVE-2020-8167

A flaw was found in rubygem-actionview. A regression of CVE-2015-1840 causes Rails-ujs to send CSRF tokens to wrong domains. The highest threat from this vulnerability is to data integrity...

5CVSS7.7AI score0.04397EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2020/06/01 3:26 p.m.50 views

CVE-2020-10756

An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6sendechoreply routine while replying to an ICMP echo request, also known as ping. This flaw allows a malicious guest to leak the contents of the host memory,...

2.1CVSS2.3AI score0.0051EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/04/28 5:40 p.m.50 views

CVE-2020-11762

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case. Mitigation Mitigation for this issue is either not available or the currently available options do not meet th...

5.5CVSS1.9AI score0.01807EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/04/09 12:44 p.m.50 views

CVE-2019-11248

The debugging endpoint /debug/pprof is exposed over the unauthenticated Kubelet healthz port. The go pprof endpoint is exposed over the Kubelet's healthz port. This debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for...

8.2CVSS2.1AI score0.61139EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/04/09 10:6 a.m.50 views

CVE-2019-0154

A flaw was found in Intel graphics hardware GPU where a local attacker with the ability to issue an ioctl could trigger a hardware level crash if MMIO registers were read while the graphics card was in a low-power state. This creates a denial of service situation and the GPU and connected display...

6.5CVSS1AI score0.00646EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/04/09 7:12 a.m.50 views

CVE-2018-3665

A Floating Point Unit FPU state information leakage flaw was found in the way the Linux kernel saved and restored the FPU state during task switch. Linux kernels that follow the "Lazy FPU Restore" scheme are vulnerable to the FPU state information leakage issue. An unprivileged local attacker cou...

5.6CVSS2AI score0.00611EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2020/04/08 4:57 a.m.50 views

CVE-2018-1000199

An address corruption flaw was discovered in the Linux kernel built with hardware breakpoint CONFIGHAVEHWBREAKPOINT support. While modifying a h/w breakpoint via 'modifyuserhwbreakpoint' routine, an unprivileged user/process could use this flaw to crash the system kernel resulting in DoS OR to...

7.8CVSS1.7AI score0.01221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2020/04/06 5:7 p.m.50 views

CVE-2019-11745

A heap-based buffer overflow was found in the NSCEncryptUpdate function in Mozilla nss. A remote attacker could trigger this flaw via SRTP encrypt or decrypt operations, to execute arbitrary code with the permissions of the user running the application compiled with nss. While the attack complexi...

8.8CVSS4AI score0.02994EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2020/04/03 9:1 p.m.50 views

CVE-2020-1934

A flaw was found in Apache's HTTP server httpd .The modproxyftp module may use uninitialized memory with proxying to a malicious FTP server. The highest threat from this vulnerability is to data confidentiality...

5.3CVSS6.6AI score0.51951EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/04/03 2:9 a.m.50 views

CVE-2019-16777

Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For example, if a package was installed globally and created a serve binary, any subsequent installs of...

7.7CVSS1.7AI score0.01984EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/03/31 8:38 a.m.50 views

CVE-2018-18314

Perl before 5.26.3 has a buffer overflow via a crafted regular expression that triggers invalid write operations...

9.8CVSS6.2AI score0.0606EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2020/03/24 2:31 p.m.50 views

CVE-2019-8844

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in tvOS 13.3, watchOS 6.1.1, iCloud for Windows 10.9, iOS 13.3 and iPadOS 13.3, Safari 13.0.4, iTunes 12.10.3 for Windows, iCloud for Windows 7.16. Processing maliciously crafted web content may le...

9.3CVSS2.4AI score0.02091EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/02/11 10:44 p.m.50 views

CVE-2020-6800

Mozilla developers and community members reported memory safety bugs present in Firefox 72 and Firefox ESR 68.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. In general, these flaws...

8.8CVSS2.4AI score0.02274EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/02/06 5:44 p.m.50 views

CVE-2020-5398

A flaw was found in springframework in versions prior to 5.0.16, 5.1.13, and 5.2.3. A reflected file download RFD attack is possible when a "Content-Disposition" header is set in response to where the filename attribute is derived from user supplied input. The highest threat from this vulnerabili...

8CVSS4.4AI score0.88077EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2020/01/09 7:9 p.m.50 views

CVE-2020-5311

An out-of-bounds write flaw was discovered in python-pillow in the way SGI RLE images are decoded. An application that uses python-pillow to decode untrusted images may be vulnerable to this flaw, which can allow an attacker to crash the application or potentially execute code on the system...

9.8CVSS4.5AI score0.04212EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/12/10 4:48 p.m.50 views

CVE-2019-19532

An out-of-bounds write flaw was found in the Linux kernel’s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address. Mitigation Mitigation for this issue is either not available or the currently available options...

6.8CVSS1.5AI score0.00504EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/12/10 11:51 a.m.50 views

CVE-2019-19449

An out of bounds OOB memory access flaw was found in the Linux kernel's F2FS file system. A local attacker could use this vulnerability to crash the system or leak kernel internal information. Mitigation Red Hat has investigated whether a possible mitigation exists for this issue, and has not bee...

7.8CVSS1.6AI score0.02014EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2019/12/04 12:48 a.m.50 views

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 68.3, Firefox ESR 68.3, and Firefox 71...

8.8CVSS2.2AI score0.01892EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2019/11/21 11:7 a.m.50 views

CVE-2019-19045

A flaw was found in the Linux kernel. The Mellanox Technologies Innova driver mishandles resource cleanup on error. An attacker, able to trigger error could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate thi...

4.9CVSS0.9AI score0.00556EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/11/18 2:37 p.m.50 views

CVE-2019-10172

A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries such that an XML external entity XXE vulnerability affects codehaus's jackson-mapper-asl libraries. This vulnerability is similar to CVE-2016-3720. The primary threat from this flaw is data integrity...

9.8CVSS3AI score0.17044EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/11/08 4:20 a.m.50 views

CVE-2017-3511

An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges...

7.7CVSS1.6AI score0.00759EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2019/11/04 4:10 p.m.50 views

CVE-2019-1125

A Spectre gadget was found in the Linux kernel's implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel. Mitigation For mitigation related information, please refer to the Red Hat Knowledgebase artic...

5.9CVSS0.5AI score0.04521EPSS
Exploits4References3
RedhatCVE
RedhatCVE
added 2019/10/20 12:7 p.m.50 views

CVE-2018-13405

A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group an...

7.8CVSS3AI score0.0101EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2019/10/10 4:11 a.m.50 views

CVE-2018-2783

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS2.2AI score0.03966EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/10/09 10:24 p.m.50 views

CVE-2017-14495

A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the...

7.5CVSS2.6AI score0.84323EPSS
Exploits5References2
RedhatCVE
RedhatCVE
added 2019/10/09 10:11 a.m.50 views

CVE-2017-2583

Linux kernel built with the Kernel-based Virtual Machine CONFIGKVM support was vulnerable to an incorrect segment selectorSS value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resultin...

8.4CVSS2.5AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/08 10:56 a.m.50 views

CVE-2018-2798

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u181, 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS2.6AI score0.078EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/05 5:53 a.m.50 views

CVE-2017-18595

A flaw was found in the allocatetracebuffer in kernel/trace/trace.c in the debug subsystem, when failure to allocate a dynamic percpu area, a resource cleanup is called. The pointer buf-buffer still holds the address and is not set to NULL, which can cause a use-after-free problem, leading to a...

7.8CVSS0.6AI score0.0035EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/09/13 5:22 p.m.50 views

CVE-2019-15902

A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptracegetdebugreg" commit reintroduced the...

5.6CVSS2.5AI score0.00586EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2019/06/11 2:52 p.m.50 views

CVE-2019-3875

A vulnerability was found in keycloak before 6.0.2. The X.509 authenticator supports the verification of client certificates through the CRL, where the CRL list can be obtained from the URL provided in the certificate itself CDP or through the separately configured path. The CRL are often availab...

6.5CVSS1.2AI score0.00291EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/02/07 11:50 a.m.50 views

CVE-2019-1003011

An information exposure and denial of service vulnerability exists in Jenkins Token Macro Plugin 2.5 and earlier in src/main/java/org/jenkinsci/plugins/tokenmacro/Parser.java, src/main/java/org/jenkinsci/plugins/tokenmacro/TokenMacro.java,...

8.1CVSS4.2AI score0.02039EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2019/02/06 8:20 a.m.50 views

CVE-2019-3823

An out-of-bounds read flaw was found in the way curl handled certain SMTP responses. A remote attacker could use this flaw to crash curl. Mitigation Do not use SMTP authentication with curl...

7.5CVSS0.9AI score0.04286EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2018/03/12 4:19 p.m.50 views

CVE-2017-1002101

It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...

9.6CVSS1.4AI score0.11586EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2018/01/22 10:59 p.m.50 views

CVE-2017-15191

In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...

7.5CVSS1.8AI score0.02697EPSS
Exploits0References2
Total number of security vulnerabilities5000