Lucene search
K
RedhatcveMost viewed

206363 matches found

RedhatCVE
RedhatCVE
•added 2023/12/14 6:1 p.m.•50 views

CVE-2023-6563

An unconstrained memory consumption vulnerability was discovered in Keycloak. It can be triggered in environments which have millions of offline tokens 500,000 users with each having at least 2 saved sessions. If an attacker creates two or more user sessions and then open the "consents" tab of th...

7.7CVSS7.6AI score0.01239EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/12/08 7:57 a.m.•50 views

CVE-2023-6606

An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information. Mitigation To mitigate this issue, prevent module cifs from being loaded. Please see...

7.1CVSS6.9AI score0.00526EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/11/17 10:20 p.m.•50 views

CVE-2023-26364

A flaw was found in Adobe CSS Tools. An improper input validation could result in a minor denial of service while parsing a malicious CSS with the parse component. User interaction and privileges are not required to jeopardize an environment. Mitigation No mitigation is yet available for this...

5.3CVSS5.4AI score0.00985EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/09/27 6:54 a.m.•50 views

CVE-2023-5176

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes this flaw as: Memory safety bugs are present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. Some of these bugs showed evidence of memory corruption, and we presume that with enough effort, some of these cou...

9.8CVSS7.3AI score0.01233EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/09/25 7:54 a.m.•50 views

CVE-2023-5156

A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash...

7.5CVSS6.8AI score0.01439EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/08/31 1:30 a.m.•50 views

CVE-2023-26048

A flaw was found in the jetty-server package. A servlet with multipart support could get an OutOfMemorryError when the client sends a part that has a name but no filename and substantial content. This flaw allows a malicious user to jeopardize the environment by leaving the JVM in an unreliable...

5.3CVSS4.8AI score0.0326EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/24 5:15 p.m.•50 views

CVE-2022-44729

A flaw was found in Apache Batik 1.0 - 1.16. This issue occurs due to a malicious SVG triggering external resources loading by default, causing resource consumption or in some cases information disclosure...

6.5CVSS6.6AI score0.00786EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/08/23 9:45 p.m.•50 views

CVE-2022-47673

An issue was discovered in Binutils addr2line before 2.39.3, function parsemodule contains multiple out of bound reads which may cause a denial of service or other unspecified impacts...

7.8CVSS6.9AI score0.00434EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/08/10 10:19 a.m.•50 views

CVE-2023-32004

A vulnerability was found in NodeJS. This security issue occurs as improper handling of buffers in file system APIs, causing a traversal path to bypass when verifying file permissions. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the R...

8.8CVSS9AI score0.01817EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/19 4:6 p.m.•50 views

CVE-2023-37450

A vulnerability was found in webkitgtk. This issue occurs when processing web content, which may lead to arbitrary code execution. Mitigation This vulnerability can be mitigated by setting the environment variable JSCuseWebAssembly=0, which will disable support for WebAssembly. It's not necessary...

8.8CVSS8.7AI score0.18185EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/05 10:26 a.m.•50 views

CVE-2023-1295

A time-of-check to time-of-use flaw was found in the iouring subsystem's IORINGOPCLOSE operation in the Linux kernel. This flaw allows a local user to elevate their privileges to root...

7.8CVSS6.7AI score0.00218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/23 3:16 a.m.•50 views

CVE-2023-3128

A flaw was found in Grafana, which validates Azure AD accounts based on the email claim. On Azure AD, the profile email field is not unique across Azure AD tenants, which enables Grafana account takeover and authentication bypass when Azure AD OAuth is configured with a multi-tenant AzureAD OAuth...

9.8CVSS6.8AI score0.04094EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/06 7:55 a.m.•50 views

CVE-2023-34432

A heap buffer overflow vulnerability was found in sox, in the lsxreadbuf function at sox/src/formatsi.c:98:16. This flaw can lead to a denial of service, code execution, or information disclosure...

7.8CVSS7.4AI score0.00386EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/05/23 3:10 p.m.•50 views

CVE-2023-20883

A flaw was found in Spring Boot, occurring prominently in Spring MVC with a reverse proxy cache. This issue requires Spring MVC to have auto-configuration enabled and the application to use Spring Boot's welcome page support, either static or templated, resulting in the application being deployed...

7.5CVSS6.6AI score0.00904EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/05/17 9:27 a.m.•50 views

CVE-2023-28319

A use-after-free flaw was found in the Curl package. This flaw risks inserting sensitive heap-based data into the error message that users might see or is otherwise leaked and revealed...

5.9CVSS6.2AI score0.02489EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/04/25 1:52 p.m.•50 views

CVE-2022-25243

A flaw was found in HashiCorp Vault and Vault Enterprise. This flaw allows a remote, authenticated attacker to bypass security restrictions caused by a flaw related to the PKI secrets engine under certain configurations. An attacker can issue wildcard certificates to authorized users for a...

6.5CVSS6.5AI score0.00562EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/24 1:7 p.m.•50 views

CVE-2023-1584

A flaw was found in Quarkus. Quarkus OIDC can leak both ID and access tokens in the authorization code flow when an insecure HTTP protocol is used, which can allow attackers to access sensitive user data directly from the ID token or by using the access token to access user data from OIDC provide...

7.5CVSS6.6AI score0.00963EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/03/21 1:13 p.m.•50 views

CVE-2023-27536

A flaw was found in the Curl package. Libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, the GSS delegation setting was left out from the configuration match checks, making them match too easily, affecting...

5.9CVSS8.7AI score0.01566EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/03/19 5:42 p.m.•50 views

CVE-2023-26606

In the Linux kernel 6.0.8, there is a use-after-free in ntfstrimfs in fs/ntfs3/bitmap.c...

7CVSS7.6AI score0.00393EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/03/13 8:42 a.m.•50 views

CVE-2023-27898

A flaw was found in Jenkins. Affected versions of Jenkins do not escape the Jenkins version that a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins in the plugin manager. This issue results in a stored Cross-site scripting XSS...

8.8CVSS5.9AI score0.0184EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/09 12:15 a.m.•50 views

CVE-2023-1108

A flaw was found in undertow. This issue makes achieving a denial of service possible due to an unexpected handshake status updated in SslConduit, where the loop never terminates...

7.5CVSS2.4AI score0.01771EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/08 10:22 p.m.•50 views

CVE-2022-40959

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue that certain pages did not have their FeaturePolicy fully initialized during iframe navigation, leading to a bypass that leaked device permissions into untrusted subdocuments...

7.5CVSS2.5AI score0.01284EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/02 12:29 p.m.•50 views

CVE-2022-27672

A flaw was found in HW. When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch, potentially resulting in information disclosure. Mitigation The current mitigations for spectre V4 or spectrev2 should mitiga...

4.7CVSS6.4AI score0.00289EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/02/28 6:59 p.m.•50 views

CVE-2022-1438

A flaw was found in Keycloak. Under specific circumstances, HTML entities are not sanitized during user impersonation, resulting in a Cross-site scripting XSS vulnerability...

6.4CVSS0.9AI score0.0066EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/02/17 11:57 a.m.•50 views

CVE-2023-23914

A flaw was found in the Curl package, where the HSTS mechanism would be ignored by subsequent transfers when done on the same command line because the state would not be properly carried. This issue may result in limited confidentiality and integrity...

6.5CVSS7.7AI score0.00858EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/02/15 4:0 p.m.•50 views

CVE-2023-0778

A Time-of-check Time-of-use TOCTOU flaw was found in podman. This issue may allow a malicious user to replace a normal file in a volume with a symlink while exporting the volume, allowing for access to arbitrary files on the host file system...

6.8CVSS6.4AI score0.00541EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/09 9:20 p.m.•50 views

CVE-2022-2879

A flaw was found in the golang package, where Reader.Read does not set a limit on the maximum size of file headers. After fixing, Reader.Read limits the maximum size of header blocks to 1 MiB. This flaw allows a maliciously crafted archive to cause Read to allocate unbounded amounts of memory,...

6.5CVSS7.4AI score0.01544EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/02/07 4:26 a.m.•50 views

CVE-2023-0494

A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo and ProcXkbGetDeviceInfo to read and write into freed memory. This can lead to local privilege elevation on systems where the X server runs...

7.8CVSS8AI score0.00899EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/25 4:13 p.m.•50 views

CVE-2022-3094

A flaw was found in Bind, where sending a flood of dynamic DNS updates may cause named to allocate large amounts of memory. This issue may cause named to slow down due to a lack of free memory, resulting in a denial of service DoS...

6.5CVSS7.2AI score0.13108EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/25 2:36 p.m.•50 views

CVE-2022-4696

A use-after-free flaw was found in the iouring subsystem of the Linux kernel. This issue occurs during the IORINGOPSPLICE operation due to a missing IOWQWORKFILES flag, leading to an invalid decrease of its reference counter and later causing the use-after-free vulnerability. This flaw allows a...

7.8CVSS4.7AI score0.00407EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/01/19 4:4 a.m.•50 views

CVE-2022-41721

A request smuggling attack is possible when using MaxBytesHandler. When using MaxBytesHandler, the body of an HTTP request is not fully consumed. When the server attempts to read HTTP2 frames from the connection, it will instead read the body of the HTTP request, which could be attacker-manipulat...

7.5CVSS0.7AI score0.01814EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2022/12/09 1:34 p.m.•50 views

CVE-2022-41854

Those using Snakeyaml to parse untrusted YAML files may be vulnerable to Denial of Service attacks DOS. If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack overflow. This effect may support a denial of service attack...

6.5CVSS6.6AI score0.01476EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2022/09/30 6:18 p.m.•50 views

CVE-2022-21222

A vulnerability was found in the css-what package. The flaw allows Regular expression denial of service ReDoS attacks, affecting system availability...

7.5CVSS5AI score0.01421EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/09/19 10:43 a.m.•50 views

CVE-2022-3176

A use-after-free flaw was found in iouring in the Linux kernel. This flaw allows a local user to trigger the issue if a signalfd or binder fd is polled with the iouring poll due to a lack of iouring POLLFREE handling...

7CVSS1.9AI score0.00287EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2022/08/25 2:10 p.m.•50 views

CVE-2022-2990

An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able t...

7.1CVSS2.1AI score0.00331EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/08/24 1:10 p.m.•50 views

CVE-2022-35948

A flaw was found in the undici package. When requesting unsanitized input on content-type headers, it is possible to inject additional requests via Carriage Return/Line Feed CRLF. Mitigation A possible mitigation is to sanitize user input when sending content-type headers...

5.3CVSS3.9AI score0.01203EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/07/01 5:56 p.m.•50 views

CVE-2022-24805

A flaw was found in net-snmp. A buffer overflow in the handling of the INDEX of NET-SNMP-VACM-MIB can cause an out-of-bounds memory access issue...

6.7CVSS3.4AI score0.01299EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2022/06/16 1:59 p.m.•50 views

CVE-2022-2042

A heap use-after-free vulnerability was found in Vim's skipwhite function of the src/charset.c file. This flaw occurs because of an uninitialized attribute value and freed memory in the spell command. This flaw allows an attacker to trick a user into opening a specially crafted file, triggering a...

7.8CVSS3.1AI score0.01411EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/05/20 10:46 p.m.•50 views

CVE-2022-22995

The combination of primitives offered by SMB and AFP in their default configuration allows the arbitrary writing of files. By exploiting these combination of primitives, an attacker can execute arbitrary code...

10CVSS4.3AI score0.02656EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2022/05/19 4:48 a.m.•50 views

CVE-2022-1735

A flaw was found in vim. The vulnerability occurs due to Illegal memory access and leads to a heap buffer overflow vulnerability. This flaw allows an attacker to input a specially crafted file, leading to a crash or code execution. Mitigation Untrusted vim scripts with -s scriptin are not...

7.8CVSS5.4AI score0.01252EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2022/05/18 5:24 p.m.•50 views

CVE-2021-36203

The affected product may allow an attacker to identify and forge requests to internal systems by way of a specially crafted request...

9.1CVSS4.3AI score0.0081EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2022/05/07 2:9 p.m.•50 views

CVE-2021-44717

There's a flaw in golang's syscall.ForkExec interface. An attacker who manages to first cause a file descriptor exhaustion for the process, then cause syscall.ForkExec to be called repeatedly, could compromise data integrity and/or confidentiality in a somewhat uncontrolled way in programs linked...

5.8CVSS3.2AI score0.01857EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/29 12:46 p.m.•50 views

CVE-2022-29810

A flaw was found in go-getter, where the go-getter library can write SSH credentials into its log file. This flaw allows a local user with access to read log files to read sensitive credentials, which may lead to privilege escalation or account takeover...

5.5CVSS3.3AI score0.00403EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/04/27 8:24 a.m.•50 views

CVE-2022-24882

A vulnerability was found in freerdp. The flaw occurs because the NT LAN Manager NTLM authentication does not properly abort when someone provides an empty password value. This issue exposes an improper authenticating vulnerability...

9.1CVSS3.4AI score0.02674EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/04/11 3:23 p.m.•50 views

CVE-2022-28202

A flaw was found in MediaWiki. The widthheight, widthheightpage, and nbytes properties of messages are not escaped when used in galleries or Special:RevisionDelete...

6.1CVSS1.8AI score0.01152EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2022/02/25 3:18 p.m.•50 views

CVE-2022-26127

A buffer overflow vulnerability exists in FRRouting through 8.1.0 due to missing a check on the input packet length in the babelpacketexamin function in babeld/message.c...

8.1CVSS4AI score0.01014EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2022/01/24 4:55 p.m.•50 views

CVE-2021-45960

expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to buffer overrun. The highest threat from this vulnerability is to availability...

9CVSS1.1AI score0.042EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/11/10 3:37 a.m.•50 views

CVE-2021-23192

A flaw was found in the way samba implemented DCE/RPC. If a client to a Samba server sent a very large DCE/RPC request, and chose to fragment it, an attacker could replace later fragments with their own data, bypassing the signature requirements. Mitigation Setting dcesrv:max auth states=0 in the...

7.5CVSS7.4AI score0.01953EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/09/30 8:24 p.m.•50 views

CVE-2021-41798

Cross-site scripting XSS vulnerability was found in mediawiki. Due to insufficient sanitization of user-supplied data in Special:Search function a remote attacker can permanently inject and execute arbitrary HTML and script code in user's browser in context of vulnerable website...

6.1CVSS2.8AI score0.01302EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/09/22 7:10 p.m.•50 views

CVE-2021-39537

A heap overflow vulnerability has been found in the ncurses package, particularly in the "tic". This flaw results from a lack of proper bounds checking during input processing. By exploiting this boundary error, an attacker can create a malicious file, deceive the victim into opening it using the...

6.8CVSS8.5AI score0.03005EPSS
Exploits1References4
Total number of security vulnerabilities5000