Lucene search
K
RedhatcveMost viewed

206309 matches found

RedhatCVE
RedhatCVE
•added 2021/05/11 8:55 p.m.•45 views

CVE-2021-25288

There is an out-of-bounds read in J2kDecode in j2kugrayi. For J2k images with multiple bands, it’s legal to have different widths for each band, e.g. 1 byte for L, 4 bytes for A. Mitigation To mitigate this feature on Red Hat Quay keep the invoice generation feature disabled, as it is by default...

9.1CVSS1.2AI score0.02342EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/11 8:54 p.m.•45 views

CVE-2021-3491

A flaw was found in the Linux kernel. The iouring PROVIDEBUFFERS operation allowed the MAXRWCOUNT limit to be bypassed, which led to negative values being used in memrw when reading /proc//mem. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

8.8CVSS8.1AI score0.00629EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/05/04 8:22 p.m.•45 views

CVE-2020-36331

A flaw was found in libwebp. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability...

9.1CVSS8.7AI score0.02302EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/04/20 8:45 p.m.•45 views

CVE-2021-2161

Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2...

5.9CVSS2.1AI score0.03125EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/04/14 4:40 p.m.•45 views

CVE-2021-25735

A vulnerability was found in Kubernetes' kube-apiserver that could allow Node updates to bypass a Validating Admission Webhook. An authenticated user could exploit this by modifying Node properties to values that should have been prevented by registered admission webhooks...

6.5CVSS2.9AI score0.05524EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/04/12 9:16 p.m.•45 views

CVE-2021-23369

A flaw was found in nodejs-handlebars. A missing check when getting prototype properties in the template function allows an attacker, who can provide untrusted handlebars templates, to execute arbitrary code in the javascript system e.g. browser or server when the template is compiled with the...

9.8CVSS5AI score0.07028EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2021/04/06 5:47 p.m.•45 views

CVE-2021-29421

There's a flaw in the pikepdf Python library's XMP metadata parsing functionality. An attacker who is able to submit a crafted PDF file to be processed by pikepdf could trigger an XML External Entity XXE injection. The highest threat of this flaw is to confidentiality of data...

7.5CVSS3.9AI score0.01713EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/03/31 10:8 a.m.•45 views

CVE-2021-22876

It was discovered that libcurl did not remove authentication credentials from URLs when automatically populating the Referer HTTP request header while handling HTTP redirects. This could lead to exposure of the credentials to the server to which requests were redirected. Mitigation This issue can...

5.3CVSS6.4AI score0.05301EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/03/29 6:55 p.m.•45 views

CVE-2021-1789

A type confusion vulnerability was found in WebKitGTK and WPE WebKit in versions prior to 2.30.6. Processing maliciously crafted web content may lead to arbitrary code execution. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS5.3AI score0.14542EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2021/03/21 6:34 a.m.•45 views

CVE-2020-10718

A flaw was found in Wildfly, where the embedded managed process API has an exposed setting of the Thread Context Classloader TCCL. This setting is exposed as a public method, which can bypass the security manager. The highest threat from this vulnerability is to confidentiality...

5CVSS1.3AI score0.01435EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/20 11:59 p.m.•45 views

CVE-2018-12130

A flaw was found in the implementation of the "fill buffer", a mechanism used by modern CPUs when a cache-miss is made on L1 CPU cache. If an attacker can generate a load operation that would create a page fault, the execution will continue speculatively with incorrect data from the fill buffer...

6.2CVSS1.8AI score0.01553EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/14 5:40 a.m.•45 views

CVE-2021-3428

A flaw was found in the Linux kernel. A denial of service problem is identified if an extent tree is corrupted in a crafted ext4 filesystem in fs/ext4/extents.c in ext4escacheextent. Fabricating an integer overflow, A local attacker with a special user privilege may cause a system crash problem...

5.5CVSS1.9AI score0.00296EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/03/12 10:4 a.m.•45 views

CVE-2021-20231

A flaw was found in gnutls. A use after free issue in client sending keyshare extension may lead to memory corruption and denial of service...

9.8CVSS9.1AI score0.03751EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2021/03/05 1:44 a.m.•45 views

CVE-2021-20267

A flaw was found in openstack-neutron's default Open vSwitch firewall rules. By sending carefully crafted packets, anyone in control of a server instance connected to the virtual switch can impersonate the IPv6 addresses of other systems on the network, resulting in denial of service or in some...

7.1CVSS7.1AI score0.01015EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/24 9:3 a.m.•45 views

CVE-2021-20260

A flaw was found in the Foreman project. The Datacenter plugin exposes the password through the API to an authenticated local attacker with viewhosts permission. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

7.8CVSS2.8AI score0.002EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/23 8:3 p.m.•45 views

CVE-2020-35522

In LibTIFF, there is a memory malloc failure in tifpixarlog.c. A crafted TIFF document can lead to an abort, resulting in a remote denial of service attack...

5.5CVSS6.3AI score0.01574EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/18 3:35 p.m.•45 views

CVE-2020-12363

A flaw was found in the Linux kernel. Improper input validation in some IntelR Graphics Drivers may allow a privileged user to potentially enable a denial of service via local access. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the Red...

5.5CVSS2.6AI score0.00308EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/02/18 3:34 p.m.•45 views

CVE-2020-12364

Null pointer reference in some IntelR Graphics Drivers for Microsoft Windows and the Linux kernel may allow a privileged user to potentially enable a denial of service via local access. Mitigation Mitigation for this issue is either not available or the currently available options dont meet the R...

5.5CVSS2.9AI score0.00308EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/02/12 3:32 p.m.•45 views

CVE-2020-13949

A flaw was found in libthrift. Applications using Thrift would not show an error upon receiving messages declaring containers of sizes larger than the payload. This results in malicious RPC clients with the ability to send short messages which would result in a large memory allocation, potentiall...

7.5CVSS2.6AI score0.06779EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/02/04 2:55 p.m.•45 views

CVE-2021-21606

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier improperly validates the format of a provided fingerprint ID when checking for its existence allowing an attacker to check for the existence of XML files with a short path...

4.3CVSS2.9AI score0.01215EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/01/29 6:34 p.m.•45 views

CVE-2021-3347

A flaw was found in the Linux kernel. A use-after-free memory flaw in the Fast Userspace Mutexes functionality allowing a local user to crash the system or escalate their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as syste...

7.8CVSS4.8AI score0.01377EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2021/01/11 6:15 p.m.•45 views

CVE-2021-20178

A flaw was found in ansible. The 'authkey' and 'privkey' credentials are disclosed by default and not protected by nolog feature when using the snmpfacts module. Attackers could take advantage of this information to steal the SNMP credentials. The highest threat from this vulnerability is to data...

5.5CVSS3.1AI score0.00337EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/01/07 8:14 p.m.•45 views

CVE-2020-36186

A flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Mitigation The following conditions are needed for an exploit, w...

8.1CVSS1.9AI score0.05218EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2021/01/07 12:5 a.m.•45 views

CVE-2020-16044

Use after free in WebRTC in Google Chrome prior to 88.0.4324.96 allowed a remote attacker to potentially exploit heap corruption via a crafted SCTP packet...

8.8CVSS3AI score0.01304EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2021/01/06 3:9 p.m.•45 views

CVE-2020-36158

A flaw was found in the Linux kernel. The marvell wifi driver could allow a local attacker to execute arbitrary code via a long SSID value in mwifiexcmd80211adhocstart function. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS7.5AI score0.02209EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2021/01/05 2:33 p.m.•45 views

CVE-2020-8287

A flaw was found in nodejs. Affected versions of Node.js allow two copies of a header field in an HTTP request. The first header field is recognized while the second is ignored leading to HTTP request smuggling. The highest threat from this vulnerability is to data confidentiality and integrity...

6.5CVSS7.1AI score0.16296EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2020/12/17 1:26 a.m.•45 views

CVE-2020-29509

A flaw was found in go. Encoding and decoding of XML attributes could lead to changes in the observed integrity. An attacker could use this flaw to trick applications which rely on attribute integrity for security decisions to make those decisions incorrectly. Known vulnerability use-cases are SA...

10CVSS2.5AI score0.04872EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2020/12/07 6:59 p.m.•45 views

CVE-2020-29573

A stack buffer overflow flaw was found in glibc in the way the printf family of functions processed an 80-bit long double with a non-canonical bit pattern. This flaw allows an attacker who can control the arguments of these functions with the non-standard long double pattern to trigger an overflo...

7.5CVSS2AI score0.02765EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/12/02 6:4 p.m.•45 views

CVE-2020-9861

A stack overflow issue existed in Swift for Linux. The issue was addressed with improved input validation for dealing with deeply nested malicious JSON input...

7.5CVSS3.2AI score0.01432EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/25 6:22 p.m.•45 views

CVE-2020-26238

A flaw was found in cron-utils. End applications passing unsanitized user input which is subsequently parsed by the @Cron annotation can allow an attacker to execute arbitrary expressions using JavaEL which will be implicitly executed by the constraint validator. The highest threat from this...

8.1CVSS6AI score0.04204EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/11/24 7:54 p.m.•45 views

CVE-2020-27771

In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...

4.3CVSS1.6AI score0.01161EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/11/23 8:51 p.m.•45 views

CVE-2020-27777

A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down usually due to Secure Boot guest system running on top of PowerVM or KVM hypervisors pseries platform a root like local user could use this flaw to further increase their privileges to...

7.2CVSS1.6AI score0.00501EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2020/11/18 5:9 p.m.•45 views

CVE-2020-28915

An out-of-bounds OOB memory access flaw was found in fbcongetfont in drivers/video/fbdev/core/fbcon.c in fbcon driver module in the Linux kernel. A bound check failure allows a local attacker with special user privilege to gain access to out-of-bounds memory, leading to a system crash or a leak o...

6.1CVSS6.5AI score0.00374EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/11/18 1:9 a.m.•45 views

CVE-2020-26960

If the Compact method was called on an nsTArray, the array could have been reallocated without updating other pointers, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox 83, Firefox ESR 78.5, and Thunderbird 78.5...

9.3CVSS3.8AI score0.01544EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/11/17 8:8 p.m.•45 views

CVE-2020-7774

A flaw was found in nodejs-y18n. There is a prototype pollution vulnerability in y18n's locale functionality. If an attacker is able to provide untrusted input via locale, they may be able to cause denial of service or in rare circumstances, impact to data integrity or confidentiality...

9.8CVSS4.6AI score0.69062EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2020/11/11 12:52 p.m.•45 views

CVE-2020-25707

An infinite loop flaw was found in the e1000e NIC emulation code of QEMU. This issue occurs in the e1000ewritepackettoguest routine while processing bogus RX descriptor data transmitted by the guest. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a...

5.5CVSS3.7AI score0.00654EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/11/03 11:1 a.m.•45 views

CVE-2020-25662

A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth stack implementation handled the initialization of stack memory when handling certain AMP packets. This flaw allows a remote attacker in an adjacent range to leak small portions of stack memory on the...

6.5CVSS1AI score0.05714EPSS
Exploits4References5
RedhatCVE
RedhatCVE
•added 2020/10/14 1:33 a.m.•45 views

CVE-2020-16119

A flaw was found in the Linux kernel. When reusing a socket with an attached dccpshctxccid as a listener, the socket will be used after being released leading to denial of service DoS or a potential code execution. The highest threat from this vulnerability is to data confidentiality and integrit...

8.1CVSS7.5AI score0.00422EPSS
Exploits1References6
RedhatCVE
RedhatCVE
•added 2020/10/13 8:20 p.m.•45 views

CVE-2020-7743

The package mathjs before 7.5.1 are vulnerable to Prototype Pollution via the deepExtend function that runs upon configuration updates...

7.5CVSS3.5AI score0.03877EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/09/30 4:17 p.m.•45 views

CVE-2019-20922

A flaw was found in nodejs-handlebars, where affected versions of handlebars are vulnerable to a denial of service. The package's parser may be forced into an endless loop while processing specially-crafted templates. This flaw allows attackers to exhaust system resources, leading to a denial of...

7.8CVSS4.3AI score0.03793EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/09/25 5:3 a.m.•45 views

CVE-2020-25285

A flaw was found in the Linux kernels sysctl handling code for hugepages management. When multiple root level processes would write to modify the /proc/sys/vm/nrhugepages file it could create a race on internal variables leading to a system crash or memory corruption. Mitigation Mitigation for th...

6.4CVSS6.9AI score0.00272EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/09/07 9:49 a.m.•45 views

CVE-2020-3885

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A file URL may be incorrectly processed...

4.3CVSS1.6AI score0.01665EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/08/27 8:37 a.m.•45 views

CVE-2020-15862

A flaw was found in Net-SNMP through version 5.73, where an Improper Privilege Management issue occurs due to SNMP WRITE access to the EXTEND MIB allows running arbitrary commands as root. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

7.8CVSS7.8AI score0.00382EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/08/24 5:4 a.m.•45 views

CVE-2020-15811

A flaw was found in squid. Due to incorrect data validation, an HTTP Request Splitting attack against HTTP and HTTPS traffic is possible leading to cache poisoning. The highest threat from this vulnerability is to data confidentiality and integrity. Mitigation Disable the relaxed HTTP parser in...

6.5CVSS3AI score0.04235EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/08/04 4:43 a.m.•45 views

CVE-2020-16166

A flaw was found in the Linux kernel. The generation of the device ID from the network RNG internal state is predictable. The highest threat from this vulnerability is to data confidentiality. Mitigation Mitigation for this issue is either not available or the currently available options dont mee...

4.3CVSS1.2AI score0.05228EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/07/31 8:13 a.m.•45 views

CVE-2020-12400

A side-channel flaw was found in NSS, in the way P-384 and P-521 curves are used in the generation of EDSA signatures, leaking partial information about the ECDSA nonce. Given a small number of ECDSA signatures, this information can be used to steal the private key. The highest threat from this...

1.2CVSS1.2AI score0.00268EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/07/23 6:37 p.m.•45 views

CVE-2020-14339

A flaw was found in libvirt, where it leaked a file descriptor for /dev/mapper/control into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapper on the host. This flaw allows a malicious guest user or process to perform operations outside of...

7.2CVSS1.7AI score0.00416EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/07/16 8:9 p.m.•45 views

CVE-2020-15366

A flaw was found in nodejs-ajv. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code...

6.8CVSS5.7AI score0.02313EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/07/15 9:39 a.m.•45 views

CVE-2020-14621

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JAXP. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

5CVSS2.4AI score0.04315EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/07/15 9:38 a.m.•45 views

CVE-2020-14562

Vulnerability in the Java SE product of Oracle Java SE component: ImageIO. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

5CVSS2.8AI score0.05166EPSS
Exploits0References3
Total number of security vulnerabilities5000