Lucene search
K
RedhatcveMost viewed

206341 matches found

RedhatCVE
RedhatCVE
added 2020/03/31 2:10 p.m.48 views

CVE-2019-16942

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled either globally or for a specific property for an externally exposed JSON endpoint and the service has the commons-dbcp 1.4 jar in the classpath, and an attacker can find a...

9.8CVSS2.1AI score0.05681EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/03/04 7:16 a.m.48 views

CVE-2020-1749

A flaw was found in the Linux kernel's implementation of some networking protocols in IPsec, such as VXLAN and GENEVE tunnels over IPv6. When an encrypted tunnel is created between two hosts, the kernel isn't correctly routing tunneled data over the encrypted link; rather sending the data...

7.5CVSS1.9AI score0.0124EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/02/28 6:40 p.m.48 views

CVE-2020-7062

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.uploadprogress.cleanup is set to 0 disabled, and the file upload fails, the upload procedure would try to clean up data that does...

7.5CVSS2.4AI score0.0351EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/02/06 7:14 p.m.48 views

CVE-2019-20388

A memory leak was found in the xmlSchemaValidateStream function of libxml2. Applications that use this library may be vulnerable to memory not being freed leading to a denial of service. System availability is the highest threat from this vulnerability...

7.5CVSS7.4AI score0.04387EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/02/03 9:12 p.m.48 views

CVE-2020-7060

When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbflfiltconvbig5wchar to read past the allocated buffer. This may lead to information disclosur...

9.1CVSS2AI score0.08888EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2020/01/16 7:9 p.m.48 views

CVE-2019-20095

A flaw was found in the Linux kernel's mwifiex driver implementation when connecting to other WiFi devices in "Test Mode." A kernel memory leak can occur if an error condition is met during the parameter negotiation. This issue can lead to a denial of service if multiple error conditions meeting...

5.5CVSS3.5AI score0.00394EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/01/09 7:9 p.m.48 views

CVE-2019-19911

A denial of service vulnerability was found in Pillow in versions before 6.2.2, where the FpxImagePlugin.py file calls the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows systems running 32-bit Python, this flaw results in an OverflowError or MemoryErro...

7.5CVSS2.8AI score0.02118EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/01/07 3:32 a.m.48 views

CVE-2018-14646

The Linux kernel was found to be vulnerable to a NULL pointer dereference bug in the netlinknscapable function in the net/netlink/afnetlink.c file. A local attacker could exploit this when a net namespace with a netnsid is assigned to cause a kernel panic and a denial of service...

5.5CVSS3AI score0.00393EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/12/23 5:38 p.m.48 views

CVE-2019-19768

A use-after-free vulnerability was found in the Linux kernel’s implementation of blktrace in the blkaddtrace function. A local attacker with permissions to run block trace instructions against a device can create a situation where the core blocktrace object is used after it is freed. The attacker...

7.5CVSS2.8AI score0.0415EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/12/11 12:21 a.m.48 views

CVE-2019-1349

An improper input validation flaw was discovered in git in the way it handles git submodules. A remote attacker could abuse this flaw to trick a victim user into recursively cloning a malicious repository, which, under certain circumstances, could fool git into using the same git directory twice...

9.3CVSS1.5AI score0.34007EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2019/11/21 11:37 a.m.48 views

CVE-2019-19059

A flaw was found in the way the Intel Wireless driver in the Linux kernel handled resource cleanup during Gen 3 device initialization. This flaw allows an attacker with the ability to restrict access to DMA coherent memory on device initialization, to crash the system. Mitigation In order to...

4.7CVSS6.6AI score0.00378EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/11/20 5:37 p.m.48 views

CVE-2019-19126

A vulnerability was discovered in glibc where the LDPREFERMAP32BITEXEC environment variable is not ignored when running binaries with the setuid flag on x8664 architectures. This allows an attacker to force system to utilize only half of the memory making the system think the software is 32-bit...

3.3CVSS2AI score0.00409EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/11/10 3:10 p.m.48 views

CVE-2019-10211

Postgresql Windows installer before versions 11.5, 10.10, 9.6.15, 9.5.19, 9.4.24 is vulnerable via bundled OpenSSL executing code from unprotected directory...

9.8CVSS6.2AI score0.01866EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2019/11/07 9:45 p.m.48 views

CVE-2018-7584

In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the phpstreamurlwraphttpex function in ext/standard/httpfopenwrapper.c. This subsequently results in copying a large string...

9.8CVSS1AI score0.87883EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2019/11/06 10:21 a.m.48 views

CVE-2017-10356

It was discovered that the Security component of OpenJDK generated weak password-based encryption keys used to protect private keys stored in key stores. This made it easier to perform password guessing attacks to decrypt stored keys if an attacker could gain access to a key store...

6.2CVSS2.4AI score0.00754EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/27 6:8 p.m.48 views

CVE-2017-0861

Use-after-free vulnerability in the sndpcminfo function in the ALSA subsystem in the Linux kernel allows attackers to induce a kernel memory corruption and possibly crash or lock up a system. Due to the nature of the flaw, a privilege escalation cannot be fully ruled out, although we believe it i...

7.8CVSS4.7AI score0.00427EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2019/10/25 12:24 a.m.48 views

CVE-2017-7308

It was found that the packetsetring function of the Linux kernel's networking implementation did not properly validate certain block-size data. A local attacker with CAPNETRAW capability could use this flaw to trigger a buffer overflow resulting in a system crash or a privilege escalation...

7.8CVSS3.9AI score0.17827EPSS
Exploits17References2
RedhatCVE
RedhatCVE
added 2019/10/21 11:20 a.m.48 views

CVE-2019-17666

A flaw was found in the Linux kernel's implementation of the RealTek wireless drivers WiFi-direct or WiFi peer-to-peer driver implementation. When the RealTek wireless networking hardware is configured to accept WiFi-Direct or WiFi P2P connections, an attacker within the wireless network...

8.8CVSS1.5AI score0.03017EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2019/10/10 11:39 p.m.48 views

CVE-2017-3736

There is a carry propagating bug in the x8664 Montgomery squaring procedure in OpenSSL before 1.0.2m and 1.1.0 before 1.1.0g. No EC algorithms are affected. Analysis suggests that attacks against RSA and DSA as a result of this defect would be very difficult to perform and are not believed likely...

6.5CVSS2AI score0.10133EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2019/08/01 8:23 a.m.48 views

CVE-2015-9289

A vulnerability was found in the Linux kernel’s CX24116 tv-card driver, where an out of bounds read occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. An attacker could use this flaw to leak kernel private information to userspace...

5.5CVSS6.7AI score0.00416EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/07/19 6:21 a.m.48 views

CVE-2019-13115

In libssh2 before 1.9.0, kexmethoddiffiehellmangroupexchangesha256keyexchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to disclose sensitive information or caus...

9.3CVSS4.6AI score0.11659EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2019/07/10 10:51 a.m.48 views

CVE-2019-13012

The keyfile settings backend in GNOME GLib aka glib2.0 before 2.60.0 creates directories using gfilemakedirectorywithparents kfsb-dir, NULL, NULL and files using gfilereplacecontents kfsb-file, contents, length, NULL, FALSE, GFILECREATEREPLACEDESTINATION, NULL, NULL, NULL. Consequently, it does n...

9.8CVSS1.8AI score0.03211EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2019/05/06 12:51 p.m.48 views

CVE-2019-5827

Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS3.2AI score0.01976EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2019/03/04 2:49 p.m.48 views

CVE-2019-5786

Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

8.8CVSS3.8AI score0.61537EPSS
Exploits10References3
RedhatCVE
RedhatCVE
added 2019/02/01 11:49 p.m.48 views

CVE-2018-16487

A prototype pollution vulnerability was found in lodash 4.17.11 where the functions merge, mergeWith, and defaultsDeep can be tricked into adding or modifying properties of Object.prototype...

6.8CVSS2.5AI score0.01553EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2019/01/15 12:51 a.m.48 views

CVE-2019-6109

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8CVSS1.8AI score0.03807EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/12/13 11:11 a.m.48 views

CVE-2018-19961

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because TLB flushes do not always occur after IOMMU mapping changes...

8.1CVSS3.5AI score0.00409EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/11/07 12:49 a.m.48 views

CVE-2018-16843

nginx before versions 1.15.6 and 1.14.1 has a vulnerability in the implementation of HTTP/2 that can allow for excessive memory consumption. This issue affects nginx compiled with the ngxhttpv2module not compiled by default if the 'http2' option of the 'listen' directive is used in a configuratio...

7.8CVSS4.5AI score0.47057EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/10/31 7:21 a.m.48 views

CVE-2018-16842

Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based buffer over-read in the toolmsgs.c:voutf function that may result in information exposure and denial of service...

9.1CVSS4.3AI score0.02099EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/10/05 9:49 p.m.48 views

CVE-2018-17456

An option injection flaw has been discovered in git when it recursively clones a repository with sub-modules. A remote attacker may configure a malicious repository and trick a user into recursively cloning it, thus executing arbitrary commands on the victim's machine...

9.8CVSS5AI score0.97356EPSS
Exploits12References2
RedhatCVE
RedhatCVE
added 2018/08/23 5:54 a.m.48 views

CVE-2018-15494

In Dojo Toolkit before 1.14, there is unescaped string injection in dojox/Grid/DataGrid...

9.8CVSS1.9AI score0.02611EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2018/08/21 7:18 a.m.48 views

CVE-2016-4975

It was found that Apache was vulnerable to a HTTP response splitting attack for sites which use moduserdir. An attacker could use this flaw to inject CRLF characters into the HTTP header and could possibly gain access to secure data...

6.1CVSS1.4AI score0.19798EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2018/08/01 5:49 p.m.48 views

CVE-2017-18344

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function. Mitigation Attached to this bugzilla is a systemtap script that will prevent opening an...

7.1CVSS6.4AI score0.03228EPSS
Exploits8References1
RedhatCVE
RedhatCVE
added 2018/06/27 8:19 a.m.48 views

CVE-2018-1000517

BusyBox project BusyBox wget version prior to commit 8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e contains a Buffer Overflow vulnerability in Busybox wget that can result in heap buffer overflow. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been...

9.8CVSS5.5AI score0.32919EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/06/14 8:19 a.m.48 views

CVE-2018-0495

Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the Hidden Number Problem or ROHNP. T...

5.1CVSS2.2AI score0.00887EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2018/06/11 8:19 a.m.48 views

CVE-2018-1000204

A malformed SGIO ioctl issued for a SCSI device in the Linux kernel leads to a local kernel data leak manifesting in up to approximately 1000 memory pages copied to the userspace. The problem has limited scope as non-privileged users usually have no permissions to access SCSI device files...

6.3CVSS3.1AI score0.01912EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/04/25 9:18 a.m.48 views

CVE-2018-10323

The xfsbmapextentstobtree function in fs/xfs/libxfs/xfsbmap.c in the Linux kernel can cause a NULL pointer dereference in xfsbmapiwrite function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted xfs filesystem image to cause a kernel pani...

5.5CVSS4.1AI score0.00574EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2018/04/12 11:19 p.m.48 views

CVE-2017-18258

The xzhead function in xzlib.c in libxml2 before 2.9.6 allows remote attackers to cause a denial of service memory consumption via a crafted LZMA file, because the decoder functionality does not restrict memory usage to what is required for a legitimate file...

6.5CVSS5.4AI score0.02706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2018/01/03 4:19 a.m.48 views

CVE-2017-18013

In LibTIFF 4.0.9, there is a Null-Pointer Dereference in the tifprint.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash...

7.5CVSS2.1AI score0.02924EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2017/12/20 3:49 a.m.48 views

CVE-2017-13870

An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote...

8.8CVSS6AI score0.024EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/12/18 3:20 p.m.48 views

CVE-2017-17741

Linux kernel compiled with the KVM virtualization CONFIGKVM support is vulnerable to an out-of-bounds read access issue. It could occur when emulating vmcall instructions invoked by a guest. A guest user/process could use this flaw to disclose kernel memory bytes...

6.5CVSS2.2AI score0.00451EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/12/14 2:19 a.m.48 views

CVE-2017-17449

The netlinkdelivertapskb function in net/netlink/afnetlink.c in the Linux kernel, through 4.14.4, does not restrict observations of Netlink messages to a single net namespace, when CONFIGNLMON is enabled. This allows local users to obtain sensitive information by leveraging the CAPNETADMIN...

4.7CVSS4.1AI score0.00436EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/12/11 5:20 p.m.48 views

CVE-2017-17456

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-14245. Reason: This candidate is a duplicate of CVE-2017-14245. Notes: All CVE users should reference CVE-2017-14245 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental...

8.1CVSS6.5AI score0.02043EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/10/27 9:19 a.m.48 views

CVE-2017-15396

A stack buffer overflow in NumberingSystem in International Components for Unicode ICU for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS3.5AI score0.02203EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/10/16 9:50 a.m.48 views

CVE-2017-13079

Wi-Fi Protected Access WPA and WPA2 that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key IGTK during the four-way handshake, allowing an attacker within radio range to spoof frames from access points to clients...

8.1CVSS3.4AI score0.02124EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/10/02 1:29 p.m.48 views

CVE-2017-14493

A stack buffer overflow was found in dnsmasq in the DHCPv6 code. An attacker on the local network could send a crafted DHCPv6 request to dnsmasq which would cause it to a crash or, potentially, execute arbitrary code...

9.8CVSS5.4AI score0.83638EPSS
Exploits6References2
RedhatCVE
RedhatCVE
added 2017/08/23 7:48 p.m.48 views

CVE-2017-12967

The getsym function in tekhex.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a malformed tekhex binary...

6.5CVSS6.7AI score0.03101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/06/30 11:21 a.m.48 views

CVE-2017-9226

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write or read occurs in nextstateval during regular expression compilation. Octal numbers larger than 0xff are not handled correctly in fetchtoken and...

9.8CVSS1.6AI score0.07511EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2017/02/03 12:49 p.m.48 views

CVE-2016-10158

It was found that the exifconvertanytoint function in PHP was vulnerable to floating point exceptions when parsing tags in image files. A remote attacker with the ability to upload a malicious image could crash PHP, causing a Denial of Service...

7.5CVSS4.2AI score0.07763EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2017/01/11 3:47 p.m.48 views

CVE-2016-7478

Zend/zendexceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service infinite loop via a crafted Exception object in serialized data, a related issue to CVE-2015-8876...

9.8CVSS5.5AI score0.42401EPSS
Exploits2References2
Total number of security vulnerabilities5000