Lucene search
K
RedhatcveMost viewed

206360 matches found

RedhatCVE
RedhatCVE
•added 2019/12/10 4:48 p.m.•50 views

CVE-2019-19532

An out-of-bounds write flaw was found in the Linux kernel’s HID drivers. An attacker, able to plug in a malicious USB device, can crash the system or read and write to memory with an incorrect address. Mitigation Mitigation for this issue is either not available or the currently available options...

6.8CVSS1.5AI score0.00504EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/10 11:51 a.m.•50 views

CVE-2019-19449

An out of bounds OOB memory access flaw was found in the Linux kernel's F2FS file system. A local attacker could use this vulnerability to crash the system or leak kernel internal information. Mitigation Red Hat has investigated whether a possible mitigation exists for this issue, and has not bee...

7.8CVSS1.6AI score0.02014EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2019/11/21 11:7 a.m.•50 views

CVE-2019-19045

A flaw was found in the Linux kernel. The Mellanox Technologies Innova driver mishandles resource cleanup on error. An attacker, able to trigger error could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate thi...

4.9CVSS0.9AI score0.00556EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/18 2:37 p.m.•50 views

CVE-2019-10172

A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries such that an XML external entity XXE vulnerability affects codehaus's jackson-mapper-asl libraries. This vulnerability is similar to CVE-2016-3720. The primary threat from this flaw is data integrity...

9.8CVSS3AI score0.17044EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/08 4:20 a.m.•50 views

CVE-2017-3511

An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges...

7.7CVSS1.6AI score0.00759EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2019/11/04 4:10 p.m.•50 views

CVE-2019-1125

A Spectre gadget was found in the Linux kernel's implementation of system interrupts. An attacker with local access could use this information to reveal private data through a Spectre like side channel. Mitigation For mitigation related information, please refer to the Red Hat Knowledgebase artic...

5.9CVSS0.5AI score0.04521EPSS
Exploits4References3
RedhatCVE
RedhatCVE
•added 2019/10/20 12:7 p.m.•50 views

CVE-2018-13405

A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belongs to a certain group an...

7.8CVSS3AI score0.0101EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2019/10/10 4:11 a.m.•50 views

CVE-2018-2783

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u181, 7u161 and 8u152; Java SE Embedded: 8u152; JRockit: R28.3.17. Difficult to exploit vulnerability allows unauthenticated attacker with...

7.4CVSS2.2AI score0.03966EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/09 10:24 p.m.•50 views

CVE-2017-14495

A memory exhaustion flaw was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets which would trigger memory allocations which would never be freed, leading to unbounded memory consumption and eventually a crash. This issue only affected configurations using one of the...

7.5CVSS2.6AI score0.84323EPSS
Exploits5References2
RedhatCVE
RedhatCVE
•added 2019/10/09 10:11 a.m.•50 views

CVE-2017-2583

Linux kernel built with the Kernel-based Virtual Machine CONFIGKVM support was vulnerable to an incorrect segment selectorSS value error. The error could occur while loading values into the SS register in long mode. A user or process inside a guest could use this flaw to crash the guest, resultin...

8.4CVSS2.5AI score0.00582EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/05 5:53 a.m.•50 views

CVE-2017-18595

A flaw was found in the allocatetracebuffer in kernel/trace/trace.c in the debug subsystem, when failure to allocate a dynamic percpu area, a resource cleanup is called. The pointer buf-buffer still holds the address and is not set to NULL, which can cause a use-after-free problem, leading to a...

7.8CVSS0.6AI score0.0035EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/09/13 5:22 p.m.•50 views

CVE-2019-15902

A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptracegetdebugreg" commit reintroduced the...

5.6CVSS2.5AI score0.00586EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/06/11 2:52 p.m.•50 views

CVE-2019-3875

A vulnerability was found in keycloak before 6.0.2. The X.509 authenticator supports the verification of client certificates through the CRL, where the CRL list can be obtained from the URL provided in the certificate itself CDP or through the separately configured path. The CRL are often availab...

6.5CVSS1.2AI score0.00291EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/02/07 11:50 a.m.•50 views

CVE-2019-1003011

An information exposure and denial of service vulnerability exists in Jenkins Token Macro Plugin 2.5 and earlier in src/main/java/org/jenkinsci/plugins/tokenmacro/Parser.java, src/main/java/org/jenkinsci/plugins/tokenmacro/TokenMacro.java,...

8.1CVSS4.2AI score0.02039EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2018/03/12 4:19 p.m.•50 views

CVE-2017-1002101

It was found that volume security can be sidestepped with innocent emptyDir and subpath. This could give an attacker with access to a pod full control over the node host by gaining access to docker socket...

9.6CVSS1.4AI score0.11586EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2017/12/11 9:49 a.m.•50 views

CVE-2017-17458

It was found that mercurial was vulnerable to cross repositories modification. A specially crafted mercurial repository could trigger arbitrary commands on a client during commands such as clone or update. Mitigation Disable sub-repositories...

10CVSS3.4AI score0.06331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/11/14 11:49 p.m.•50 views

CVE-2017-15699

A Denial of Service vulnerability was found in Apache Qpid Dispatch Router versions 0.7.0 and 0.8.0. To exploit this vulnerability, a remote user must be able to establish an AMQP connection to the Qpid Dispatch Router and send a specifically crafted AMQP frame which will cause it to segfault and...

6.8CVSS6.7AI score0.03213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/10/16 9:49 a.m.•51 views

CVE-2017-13082

A new exploitation technique called key reinstallation attacks KRACK affecting WPA2 has been discovered. A remote attacker within Wi-Fi range could exploit this attack to decrypt Wi-Fi traffic or possibly inject forged Wi-Fi packets by reinstalling a previously used pairwise key PTK-TK by...

8.1CVSS3.4AI score0.04575EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/10/13 7:19 a.m.•50 views

CVE-2017-5123

The waitid implementation in upstream kernels did not restrict the target destination to copy information results. This can allow local users to write to otherwise protected kernel memory, which can lead to privilege escalation...

8.8CVSS7.1AI score0.03714EPSS
Exploits10References1
RedhatCVE
RedhatCVE
•added 2017/08/11 8:18 a.m.•50 views

CVE-2017-1000111

A race condition issue was found in the way the raw packet socket implementation in the Linux kernel networking subsystem handled synchronization. A local user able to open a raw packet socket requires the CAPNETRAW capability could use this to waste resources in the kernel's ring buffer or...

7.8CVSS0.9AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/06/19 4:18 p.m.•50 views

CVE-2017-1000365

The Linux Kernel imposes a size restriction on the arguments and environmental strings passed through RLIMITSTACK/RLIMITINFINITY, but does not take the argument and environment pointers into account, which allows attackers to bypass this limitation...

7.8CVSS5.5AI score0.00899EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/04/20 6:19 a.m.•50 views

CVE-2017-5443

An out-of-bounds write vulnerability while decoding improperly formed BinHex format archives. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox ESR 52.1, and Firefox 53...

9.8CVSS2.5AI score0.03123EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/04/19 10:18 a.m.•50 views

CVE-2017-3514

Vulnerability in the Java SE component of Oracle Java SE subcomponent: AWT. Supported versions that are affected are Java SE: 6u141, 7u131 and 8u121. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS2.8AI score0.02487EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/12/06 1:17 p.m.•50 views

CVE-2016-9637

An out of bounds array access issue was found in the Xen virtual machine monitor, built with the QEMU ioport support. It could occur while doing ioport read/write operations, if guest was to supply a 32bit address parameter. A privileged guest user/process could use this flaw to potentially...

7.6CVSS2.5AI score0.00364EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2016/11/22 10:47 a.m.•50 views

CVE-2016-7431

NTP before 4.2.8p9 allows remote attackers to bypass the origin timestamp protection mechanism via an origin timestamp of zero. NOTE: this vulnerability exists because of a CVE-2015-8138 regression...

5.3CVSS5.8AI score0.0864EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2016/11/02 11:47 a.m.•50 views

CVE-2016-9137

Use-after-free vulnerability in the CURLFile implementation in ext/curl/curlfile.c in PHP before 5.6.27 and 7.x before 7.0.12 allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data that is mishandled during wakeup processing...

9.8CVSS6.9AI score0.05363EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2016/05/05 9:48 a.m.•50 views

CVE-2016-4485

The llccmsgrcv function in net/llc/afllc.c in the Linux kernel before 4.5.5 does not initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory by reading a message...

5CVSS4.6AI score0.04671EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2026/01/09 9:33 a.m.•49 views

CVE-2024-39037

MyNET up to v26.08.316 was discovered to contain an Unauthenticated SQL Injection vulnerability via the intmenu parameter...

6.5CVSS8.3AI score0.00201EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2026/01/09 9:31 a.m.•49 views

CVE-2023-25572

react-admin is a frontend framework for building browser applications on top of REST/GraphQL APIs. react-admin prior to versions 3.19.12 and 4.7.6, along with ra-ui-materialui prior to 3.19.12 and 4.7.6, are vulnerable to cross-site scripting. All React applications built with react-admin and usi...

5.4CVSS5.4AI score0.00694EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2025/11/12 3:46 a.m.•49 views

CVE-2025-11873

The WP BBCode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'url' shortcode in all versions up to, and including, 1.8.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers,...

6.4CVSS5AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/04/30 7:16 a.m.•49 views

CVE-2025-31651

A flaw was found in Apache Tomcat's rewrite rule processing component. This vulnerability allows security constraints to be bypassed via specially crafted HTTP requests when specific, uncommon rewrite rule configurations are in use. Mitigation No mitigation is currently available that meets Red H...

5.3CVSS9.2AI score0.0418EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2025/04/05 6:35 p.m.•49 views

CVE-2025-31486

Vite is a frontend tooling framework for javascript. The contents of arbitrary files can be returned to the browser. By adding ?.svg with ?.wasm?init or with sec-fetch-dest: script header, the server.fs.deny restriction was able to bypass. This bypass is only possible if the file is smaller than...

5.3CVSS7.2AI score0.38685EPSS
Exploits7References6
RedhatCVE
RedhatCVE
•added 2025/03/27 5:50 p.m.•49 views

CVE-2024-58105

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. This CVE address an addtional bypass not covered in CVE-2024-58104. Please note: an attacker mus...

7.8CVSS7.1AI score0.00155EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/27 8:51 p.m.•49 views

CVE-2025-21756

In the Linux kernel, the following vulnerability has been resolved: vsock: Keep the binding until socket destruction Preserve sockets bindings; this includes both resulting from an explicit bind and those implicitly bound through autobind during connect. Prevents socket unbinding during a transpo...

7.8CVSS7.4AI score0.00844EPSS
Exploits3References4
RedhatCVE
RedhatCVE
•added 2024/09/05 7:15 a.m.•49 views

CVE-2024-45492

A flaw was found in libexpat's internal nextScaffoldPart function in xmlparse.c. It can have an integer overflow for mgroupSize on 32-bit platforms where UINTMAX equals SIZEMAX. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat...

6.2CVSS6.8AI score0.01393EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2024/08/30 1:12 p.m.•49 views

CVE-2024-45490

A flaw was found in libexpat's xmlparse.c component. This vulnerability allows an attacker to cause improper handling of XML data by providing a negative length value to the XMLParseBuffer function. Mitigation Mitigation for this issue is either not available or the currently available options do...

7.5CVSS9.1AI score0.01686EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2024/08/30 6:40 a.m.•49 views

CVE-2024-8105

A flaw was found in PKfail, a firmware supply-chain issue affecting hundreds of device models in the UEFI ecosystem. The Secure Boot "master key," known as the Platform Key, which manages the Secure Boot databases and maintains the chain of trust from firmware to the operating system, is often no...

8.2CVSS6.9AI score0.0024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/07/22 5:37 p.m.•49 views

CVE-2024-40898

A flaw was found in HTTPd on Windows systems. This issue potentially allows NTLM hashes to be leaked via modrewrite in server/vhost context to a malicious server via Server-side request forgery SSRF and malicious requests or content. Mitigation Mitigation for this issue is either not available or...

7.5CVSS8.9AI score0.01536EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2024/07/17 9:23 a.m.•49 views

CVE-2024-21140

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0....

4.8CVSS5.8AI score0.00879EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/05/09 2:55 p.m.•49 views

CVE-2024-3727

A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks...

8.3CVSS6.7AI score0.01279EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/05/09 4:53 a.m.•49 views

CVE-2024-24788

A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service DoS conditions. Mitigation...

7.5CVSS7.4AI score0.01001EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/05/06 2:55 p.m.•49 views

CVE-2023-31346

A flaw was found in some AMD CPUs where the guest message responses have not been zero-initialized. This issue may allow a local attacker with the ability to run arbitrary code on a container or virtual machine to discover sensitive information contained in the host system's memory. Mitigation...

4.4CVSS5.4AI score0.00309EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/04/18 4:7 p.m.•49 views

CVE-2024-26921

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

5.5CVSS7.2AI score0.0038EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2024/03/27 5:56 p.m.•49 views

CVE-2024-3019

A flaw was found in PCP. The default pmproxy configuration exposes the Redis server backend to the local network, allowing remote command execution with the privileges of the Redis user. This issue can only be exploited when pmproxy is running. By default, pmproxy is not running and needs to be...

8.8CVSS8.8AI score0.01002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/02/23 2:6 p.m.•49 views

CVE-2024-26593

In the Linux kernel, the following vulnerability has been resolved: i2c: i801: Fix block process call transactions According to the Intel datasheets, software must reset the block buffer index twice for block process call transactions: once before writing the outgoing data to the buffer, and once...

4.4CVSS7AI score0.00285EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/22 3:2 p.m.•49 views

CVE-2024-26582

A use-after-free vulnerability was found in the tls subsystem of the Linux kernel. The tlsdecryptsg function doesn't take references on the pages from clearskb, so the putpage in tlsdecryptdone releases them and a use-after-free can be triggered in processrxlist when trying to read from the...

5.8CVSS7AI score0.00254EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/02/13 6:30 p.m.•49 views

CVE-2024-21404

A denial of service vulnerability exists in .NET applications with OpenSSL support when parsing X509 certificates. The issue arises from inadequate validation of user-supplied input in .NET. This flaw allows a remote attacker to trigger a denial of service DoS attack by providing specially crafte...

7.5CVSS7AI score0.02707EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/02/06 1:2 p.m.•49 views

CVE-2024-24855

A race condition vulnerability was found in the Linux kernel's SCSI device driver in the lpfcunregisterfcfrescan function. This issue can result in a NULL pointer dereference issue, possibly leading to a kernel panic or denial of service...

5.1CVSS7.1AI score0.00184EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2024/01/30 5:23 p.m.•49 views

CVE-2021-33630

A NULL pointer dereference flaw was found in the Linux kernel's network scheduler. This issue occurs when offloading is enabled, the cbs instance is not added to the list. The code also incorrectly handles the case when offload is disabled without removing the qdisc. This could allow a local user...

5.5CVSS6.9AI score0.00341EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2024/01/25 8:0 p.m.•49 views

CVE-2024-23638

A flaw was found in Squid, resulting in a potential denial of service attack targeting Cache Manager error responses. This issue enables a trusted client to execute a denial of service by manipulating the generation of error pages for Client Manager reports. Mitigation Restrict entry to Cache...

6.5CVSS7.1AI score0.6005EPSS
Exploits1References9
Total number of security vulnerabilities5000