Lucene search
K
RedhatcveMost viewed

206309 matches found

RedhatCVE
RedhatCVE
•added 2020/10/16 12:2 a.m.•47 views

CVE-2020-8565

A flaw was found in kubernetes. In Kubernetes, if the logging level is to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like kubectl. Previously, CVE-2019-11250 was assigned for the same issue for logging...

6.5CVSS6.2AI score0.01766EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/10/05 5:28 a.m.•47 views

CVE-2017-10388

It was discovered that the Kerberos client implementation in the Libraries component of OpenJDK used the sname field from the plain text part rather than encrypted part of the KDC reply message. A man-in-the-middle attacker could possibly use this flaw to impersonate Kerberos services to Java...

7.5CVSS3.1AI score0.03206EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/09/09 9:27 p.m.•47 views

CVE-2020-25211

A flaw was found in the Linux kernel. A local attacker, able to inject conntrack netlink configuration, could overflow a local buffer causing crashes or triggering the use of incorrect protocol numbers in ctnetlinkparsetuplefilter in net/netfilter/nfconntracknetlink.c. The highest threat from thi...

6.7CVSS6.8AI score0.00566EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2020/09/02 1:19 p.m.•47 views

CVE-2020-24553

A flaw was found in the Go standard library packages before upstream versions 1.15 and 1.14.8. Both the net/http/cgi and net/http/fcgi packages use a default Content-Type response header value of "text/html", rather than "text/plain". This flaw allows an attacker to exploit this issue in...

4.3CVSS6.1AI score0.03646EPSS
Exploits2References5
RedhatCVE
RedhatCVE
•added 2020/06/24 9:50 p.m.•47 views

CVE-2020-14305

An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1720. This flaw allows an unauthenticated remote user to crash the system, causing a denial of service. The highest threat from this...

8.3CVSS7.6AI score0.05114EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/06/18 5:25 p.m.•47 views

CVE-2020-12114

A flaw was found in the Linux kernel’s implementation of the pivotroot syscall. This flaw allows a local privileged user root outside or root inside a privileged container to exploit a race condition to manipulate the reference count of the root filesystem. To be able to abuse this flaw, the...

1.9CVSS5.8AI score0.00423EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/06/18 3:55 p.m.•47 views

CVE-2020-11767

Istio through 1.5.1 and Envoy through 1.14.1 have a data-leak issue. If there is a TCP connection negotiated with SNI over HTTPS to .example.com, a request for a domain concurrently configured explicitly e.g., abc.example.com is sent to the servers listening behind .example.com. The outcome shoul...

2.6CVSS1AI score0.01774EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2020/06/12 5:54 a.m.•47 views

CVE-2020-10773

A stack information leak flaw was found in s390/s390x in the Linux kernel’s memory manager functionality, where it incorrectly writes to the /proc/sys/vm/cmmtimeout file. This flaw allows a local user to see the kernel data. Mitigation Mitigation for this issue is either not available or the...

4.4CVSS0.7AI score0.00366EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/06/04 11:52 a.m.•47 views

CVE-2020-10757

A flaw was found in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privileges on the system. Mitigation Do not use DAX enabled storage...

6.9CVSS2.1AI score0.00992EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2020/05/26 9:55 a.m.•47 views

CVE-2020-7608

A vulnerability was found in nodesjs-yargs-parser, where it can be tricked into adding or modifying properties of the Object.prototype using a "proto" payload. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

5.3CVSS3.1AI score0.00514EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/04/30 7:41 p.m.•47 views

CVE-2020-2780

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to...

4CVSS2.6AI score0.0243EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/28 4:34 a.m.•47 views

CVE-2020-10714

A flaw was found in WildFly Elytron version 1.11.3.Final and before. When using WildFly Elytron FORM authentication with a session ID in the URL, an attacker could perform a session fixation attack. The highest threat from this vulnerability is to data confidentiality and integrity as well as...

5.1CVSS0.7AI score0.01454EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 10:13 a.m.•47 views

CVE-2018-16871

A flaw was found in the Linux kernel's NFS implementation. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the...

7.5CVSS2.4AI score0.02779EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/08 9:5 p.m.•47 views

CVE-2018-1002105

A privilege escalation vulnerability exists in OpenShift Container Platform which allows for compromise of pods running co-located on a compute node. This access could include access to all secrets, pods, environment variables, running pod/container processes, and persistent volumes, including in...

9.8CVSS8.9AI score0.86978EPSS
Exploits10References2
RedhatCVE
RedhatCVE
•added 2020/04/07 4:50 a.m.•47 views

CVE-2018-18397

A flaw was found in the Linux kernel with files on tmpfs and hugetlbfs. An attacker is able to bypass file permissions on filesystems mounted with tmpfs/hugetlbs to modify a file and possibly disrupt normal system behavior. At this time there is an understanding there is no crash or privilege...

6.1CVSS2.7AI score0.0051EPSS
Exploits5References2
RedhatCVE
RedhatCVE
•added 2020/04/06 11:5 a.m.•47 views

CVE-2019-19965

A NULL pointer dereference flaw was found in the Linux kernel’s SCSI disk subsystem. A local user could use this flaw to crash the system, causing a denial of service. Mitigation To mitigate this issue, prevent module libsas from being loaded. Please see for how to blacklist a kernel module to...

4.7CVSS1.2AI score0.00654EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/04/01 2:56 a.m.•47 views

CVE-2019-14893

A flaw was discovered in FasterXML jackson-databind in all versions before 2.9.10 and 2.10.0, where it would permit polymorphic deserialization of malicious objects using the xalan JNDI gadget when used in conjunction with polymorphic type handling methods such as enableDefaultTyping or when...

9.8CVSS1.8AI score0.03958EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/03/28 1:54 p.m.•47 views

CVE-2018-8039

It was discovered that when Apache CXF is configured to use the system property com.sun.net.ssl.internal.www.protocol ,it uses reflection to make the HostnameVerifier work with old com.sun.net.ssl.HostnameVerifier interface. Although the CXF implementation throws an exception, which is caught in...

8.1CVSS2.6AI score0.10394EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/03/27 8:13 a.m.•47 views

CVE-2020-10691

An archive traversal flaw was found in Ansible Engine when running ansible-galaxy collection install. When extracting a collection .tar.gz file, the directory is created without sanitizing the filename. An attacker could take advantage to overwrite any file within the system. Mitigation A possibl...

5.2CVSS2.9AI score0.00358EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/03 9:12 p.m.•47 views

CVE-2020-7060

When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbflfiltconvbig5wchar to read past the allocated buffer. This may lead to information disclosur...

9.1CVSS2AI score0.08888EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/01/10 9:28 p.m.•47 views

CVE-2018-10902

It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc double free in sndrawmidiinputparams and sndrawmidioutputstatus which are part of sndrawmidiioctl handler in rawmidi.c file. A malicious local attacker could possibly use this f...

7.8CVSS2AI score0.00519EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/01/08 11:38 p.m.•47 views

CVE-2019-16863

Cryptographic timing vulnerabilities were discovered in certain versions of the Trusted Platform Module TPM firmware distributed by Intel and STMicroelectronics. Software that uses the TPM to compute ECDSA signatures could leak information through the timing of ECDSA signature operations, allowin...

6.8CVSS1.1AI score0.03252EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2019/12/29 3:59 p.m.•47 views

CVE-2019-15505

An out-of-bounds read flaw was found in the DVB USB subsystem of the Linux kernel. There was no boundary check applied to the array in struct technisatusb2state state-buf until the 0xff byte is encountered. If the byte is not encountered within the limit, an exposure of kernel data structure...

10CVSS0.07619EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/28 10:13 p.m.•47 views

CVE-2019-19058

A flaw was found in the Linux kernel. The Intel Wireless WiFi MVM Firmware driver mishandles resource cleanup during device coredump. An attacker able to trigger the device coredump and system-wide out of memory conditions at the same time could use this flaw to crash the system. The highest thre...

4.7CVSS0.3AI score0.00373EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/13 9:38 p.m.•47 views

CVE-2019-19531

In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca...

6.8CVSS3.1AI score0.00458EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/13 3:8 p.m.•47 views

CVE-2019-19645

alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements...

5.5CVSS5.3AI score0.00566EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/06 10:19 a.m.•47 views

CVE-2017-7542

An integer overflow vulnerability in ip6find1stfragopt function was found. A local attacker that has privileges of CAPNETRAW to open raw socket can cause an infinite loop inside the ip6find1stfragopt function...

5.5CVSS4.5AI score0.00457EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/11/04 4:16 a.m.•47 views

CVE-2017-9224

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in matchat during regular expression searching. A logical error involving order of validation and access in matchat could result in an...

9.8CVSS3.4AI score0.0654EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2019/10/11 3:57 p.m.•47 views

CVE-2017-1000410

A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space...

7.5CVSS3.7AI score0.04252EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/09 10:15 a.m.•47 views

CVE-2016-8864

A denial of service flaw was found in the way BIND handled responses containing a DNAME answer. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response...

7.5CVSS1.7AI score0.38733EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/08 10:49 a.m.•47 views

CVE-2017-7659

A NULL pointer dereference flaw was found in the modhttp2 module of httpd. A remote attacker could use this flaw to cause httpd child process to crash via a specially crafted HTTP/2 request...

5CVSS1.4AI score0.53939EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/04 9:50 p.m.•47 views

CVE-2009-2422

The example code for the digest authentication functionality httpauthentication.rb in Ruby on Rails before 2.3.3 defines an authenticateorrequestwithhttpdigest block that returns nil instead of false when the user does not exist, which allows context-dependent attackers to bypass authentication f...

9.8CVSS7.6AI score0.03377EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/10/04 8:20 p.m.•47 views

CVE-2007-2383

The Prototype prototypejs framework before 1.5.1 RC3 exchanges data using JavaScript Object Notation JSON without an associated protection scheme, which allows remote attackers to obtain the data via a web page that retrieves the data through a URL in the SRC attribute of a SCRIPT element and...

5CVSS6.7AI score0.02374EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/02/01 11:49 p.m.•47 views

CVE-2018-16487

A prototype pollution vulnerability was found in lodash 4.17.11 where the functions merge, mergeWith, and defaultsDeep can be tricked into adding or modifying properties of Object.prototype...

6.8CVSS2.5AI score0.01553EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2018/07/17 9:19 p.m.•47 views

CVE-2018-2942

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Windows DLL. Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS1.8AI score0.01835EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/03/05 12:49 p.m.•47 views

CVE-2017-18208

The madvisewillneed function in the Linux kernel allows local users to cause a denial of service infinite loop by triggering use of MADVISEWILLNEED for a DAX mapping...

5.5CVSS5.8AI score0.00502EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/12/14 6:39 p.m.•47 views

CVE-2017-17682

In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted wpg image file that triggers a ReadWPGImage call...

7.1CVSS4AI score0.02984EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2017/10/17 9:19 p.m.•47 views

CVE-2017-10357

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

5.3CVSS2AI score0.03305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/10/02 1:28 p.m.•47 views

CVE-2017-14496

An integer underflow flaw leading to a buffer over-read was found in dnsmasq in the EDNS0 code. An attacker could send crafted DNS packets to dnsmasq which would cause it to crash. This issue only affected configurations using one of the options: add-mac, add-cpe-id, or add-subnet...

7.8CVSS4.2AI score0.66347EPSS
Exploits5References2
RedhatCVE
RedhatCVE
•added 2017/08/23 7:48 p.m.•47 views

CVE-2017-12967

The getsym function in tekhex.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, allows remote attackers to cause a denial of service stack-based buffer over-read and application crash via a malformed tekhex binary...

6.5CVSS6.7AI score0.03101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/06/14 4:51 a.m.•47 views

CVE-2017-7778

A number of security vulnerabilities in the Graphite 2 library including out-of-bounds reads, buffer overflow reads and writes, and the use of uninitialized memory. These issues were addressed in Graphite 2 version 1.3.10. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird...

9.8CVSS4.4AI score0.05216EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/05/11 2:51 p.m.•47 views

CVE-2017-7486

It was found that the pgusermappings view could disclose information about user mappings to a foreign database to non-administrative database users. A database user with USAGE privilege for this mapping could, when querying the view, obtain user mapping data, such as the username and password use...

7.5CVSS3.2AI score0.06331EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/05/11 2:51 p.m.•47 views

CVE-2016-7048

The interactive installer in PostgreSQL before 9.3.15, 9.4.x before 9.4.10, and 9.5.x before 9.5.5 might allow remote attackers to execute arbitrary code by leveraging use of HTTP to download software...

9.3CVSS8.5AI score0.04915EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/12/15 10:17 p.m.•47 views

CVE-2016-8612

An error was found in protocol parsing logic of modcluster load balancer Apache HTTP Server modules. An attacker could use this flaw to cause a Segmentation Fault in the serving httpd process...

4.3CVSS5.8AI score0.04692EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2016/11/18 3:47 p.m.•47 views

CVE-2016-9074

An existing mitigation of timing side-channel attacks is insufficient in some circumstances. This issue is addressed in Network Security Services NSS 3.26.1. This vulnerability affects Thunderbird 45.5, Firefox ESR 45.5, and Firefox 50...

5.9CVSS2.8AI score0.02452EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2016/11/03 10:17 p.m.•47 views

CVE-2016-6664

A flaw was found in the way the mysqldsafe script handled creation of error log file. The mysql operating system user could use this flaw to escalate their privileges to root...

7.8CVSS1AI score0.0308EPSS
Exploits11References2
RedhatCVE
RedhatCVE
•added 2016/10/20 6:47 p.m.•47 views

CVE-2016-2848

A denial of service flaw was found in the way BIND handled packets with malformed options. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS packet...

7.5CVSS2.9AI score0.25772EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2016/08/12 6:18 a.m.•47 views

CVE-2016-6317

A flaw was found in the way Active Record handled certain special values in dynamic finders and relations. If a Ruby on Rails application performed JSON parameter parsing, a remote attacker could possibly manipulate search conditions in SQL queries generated by the application...

7.5CVSS3.5AI score0.03903EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2016/05/03 3:49 p.m.•47 views

CVE-2016-3714

It was discovered that ImageMagick did not properly sanitize certain input before passing it to the delegate functionality. A remote attacker could create a specially crafted image that, when processed by an application using ImageMagick or an unsuspecting user using the ImageMagick utilities,...

10CVSS7AI score0.97485EPSS
Exploits11References1
RedhatCVE
RedhatCVE
•added 2015/10/30 9:40 a.m.•47 views

CVE-2007-2768

OpenSSH, when using OPIE One-Time Passwords in Everything for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords OTP, a similar issue to CVE-2007-2243...

5CVSS7.4AI score0.08654EPSS
Exploits1References2
Total number of security vulnerabilities5000