Lucene search
K
RedhatcveMost viewed

206321 matches found

RedhatCVE
RedhatCVE
•added 2023/10/18 12:58 a.m.•44 views

CVE-2023-40791

An unreleased memory page flaw unpinned was found in extractusertosg in the lib/scatterlist.c function of the Linux kernel. This flaw allows a local user, or potentially remote user, to crash the system...

6.3CVSS8.8AI score0.00448EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/10/09 7:54 a.m.•44 views

CVE-2023-39192

A flaw was found in the Netfilter subsystem in the Linux kernel. The xtu32 module did not validate the fields in the xtu32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a cra...

6.7CVSS6.7AI score0.00397EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/09/30 6:24 p.m.•44 views

CVE-2023-42119

An out-of-bounds read flaw was found in Exim which exists within the smtp service. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer, leading to disclosure of some sensitive information. An attacker can...

3.1CVSS6.6AI score0.01593EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/08/31 1:30 a.m.•44 views

CVE-2023-26049

A flaw was found in the jetty-server package. Nonstandard cookie parsing in Jetty may allow an attacker to smuggle cookies within other cookies or otherwise perform unintended behavior by tampering with the cookie parsing mechanism...

5.3CVSS5AI score0.013EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/08/30 9:12 p.m.•44 views

CVE-2023-40217

Python ssl.SSLSocket is vulnerable to a bypass of the TLS handshake in certain instances for HTTPS servers and other server-side protocols that use TLS client authentication such as mTLS. This issue may result in a breach of integrity as its possible to modify or delete resources that are...

8.6CVSS5.9AI score0.0079EPSS
Exploits0References6
RedhatCVE
RedhatCVE
•added 2023/08/30 1:45 p.m.•44 views

CVE-2021-29390

A heap buffer over-read flaw was found in libjpeg-turbo. For certain types of smoothed jpeg images, the decompresssmoothdata function may improperly enter a condition statement that leads to heap memory read of uninitialized data, which may cause an application crash or loss of confidentiality...

7.1CVSS8.8AI score0.00715EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/08/28 3:49 p.m.•44 views

CVE-2023-4567

A blind SQL injection flaw was found in tower API. This issue may allow an attacker to craft a malicious SQL query into the SOCIALAUTHGITHUBKEY parameter in the /api/v2/settings/all/ endpoint and completely compromise the backend tower SQL database...

7.9AI score
Exploits0References2
RedhatCVE
RedhatCVE
•added 2023/08/23 9:21 p.m.•44 views

CVE-2022-47008

A memory leak was found in binutils in the maketempdir and maketempname functions. This flaw allows an attacker to use a set of steps to trigger a memory leak and perform a denial of service, resulting in a loss of the system's availability...

5.5CVSS5.5AI score0.00403EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/08/21 7:19 a.m.•44 views

CVE-2023-37264

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Starting in version 0.35.0, pipelines do not validate child UIDs, which means that a user that has access to create TaskRuns can create their own Tasks that the Pipelines controller will accept as the child...

4.3CVSS6.7AI score0.00318EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/08/16 7:48 a.m.•44 views

CVE-2021-28025

A flaw was found in the qt-qtsvg package. An integer overflow vulnerability in qsvghandler.cpp allows local attackers to cause a denial of service DoS...

5.5CVSS6.3AI score0.00266EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/08/14 9:49 p.m.•44 views

CVE-2023-20873

A flaw was found in Spring Boot. This targets specifically 'spring-boot-actuator-autoconfigure' package. This issue occurs when an application is deployed to Cloud Foundry, which could be susceptible to a security bypass. Specifically, an application is vulnerable when all of the following are...

9.8CVSS9.2AI score0.01122EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2023/08/08 5:51 p.m.•44 views

CVE-2023-35390

A vulnerability was found in dotnet. This issue exists when some dotnet commands are used in directories with weaker permissions, which can result in remote code execution...

7.8CVSS7.5AI score0.02471EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/08/02 10:49 a.m.•44 views

CVE-2023-31486

A vulnerability was found in Tiny, where a Perl core module and standalone CPAN package, does not verify TLS certificates by default. Users need to explicitly enable certificate verification with the verifySSL=1 flag to ensure secure HTTPS connections. This oversight can potentially expose...

6.8CVSS7.1AI score0.01742EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/07/25 8:50 a.m.•44 views

CVE-2023-3610

A use-after-free vulnerability was found in the netfilter: nftables component in the Linux kernel due to a missing error handling in the abort path of NFTMSGNEWRULE. This flaw allows a local attacker with CAPNETADMIN access capability to cause a local privilege escalation problem. Mitigation In...

7.8CVSS7.5AI score0.00259EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/21 11:30 a.m.•44 views

CVE-2023-37276

A flaw was found in aio-libs aiohttp, where it is vulnerable to HTTP request smuggling, caused by a flaw in the aiohttp.web.Application. By sending a specially crafted HTTPS request, an attacker can poison the web cache, bypass web application firewall protection, and conduct Cross-site scripting...

7.5CVSS6.3AI score0.01422EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/07/20 9:31 a.m.•44 views

CVE-2023-34967

A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the keys are character strings, and the values can be any of the supported types in the mdssvc protocol...

5.3CVSS6.4AI score0.62606EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/07/05 6:50 p.m.•44 views

CVE-2023-3269

A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas VMAs is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, a...

7.8CVSS7AI score0.01564EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/07/05 12:48 p.m.•44 views

CVE-2023-32257

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2SESSIONSETUP and SMB2LOGOFF commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage th...

8.1CVSS6.9AI score0.02393EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/26 6:17 p.m.•44 views

CVE-2023-29404

A flaw was found in golang. The go command may execute arbitrary code at build time when using cgo. This can occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This can be triggered by linker flags, specified via a "cgo LDFLAGS"...

7.5CVSS9.4AI score0.01837EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2023/06/15 2:14 p.m.•44 views

CVE-2022-21235

A flaw was found in the VCS package, caused by improper validation of user-supplied input. By using a specially-crafted argument, a remote attacker could execute arbitrary commands on the system...

9.8CVSS9.2AI score0.01818EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/06/08 11:5 a.m.•44 views

CVE-2023-3161

A flaw was found in the Framebuffer Console fbcon in the Linux Kernel. When providing a font-width and font-height greater than 32 to the fbconsetfont, since there are no checks in place, a shift-out-of-bounds occurs, leading to undefined behavior and possible denial of service...

5.5CVSS6.6AI score0.00206EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/07 8:55 a.m.•44 views

CVE-2023-31085

A divide-by-zero flaw was found in the Linux kernel’s UBI a software layer above the MTD layer that admits the use of LVM-like logical volumes on top of MTD devices. This flaw allows a local user to crash the system...

5.5CVSS5.2AI score0.00379EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/06/01 4:7 a.m.•44 views

CVE-2023-3027

The grc-policy-propagator allows security escalation within the cluster. The propagator allows policies which contain some dynamically obtained values instead of the policy apply a static manifest on a managed cluster of taking advantage of cluster scoped access in a created policy. This feature...

7.8CVSS6.6AI score0.00198EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/05/08 6:21 p.m.•44 views

CVE-2022-24434

A flaw was found in the Node.js dicer module. The affected versions of the Node.js dicer module are vulnerable to a denial of service. By sending a specially-crafted form to the server, a remote attacker can crash the node.js service. Mitigation Mitigation for this issue is either not available o...

7.5CVSS7.2AI score0.03035EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2023/05/08 9:52 a.m.•44 views

CVE-2023-27043

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is...

5.3CVSS5.7AI score0.02507EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/04/18 3:31 p.m.•44 views

CVE-2023-20863

A flaw was found in Spring Framework. Certain versions of Spring Framework's Expression Language were not restricting the size of Spring Expressions. This could allow an attacker to craft a malicious Spring Expression to cause a denial of service on the server...

6.5CVSS6.1AI score0.01122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/04/17 3:32 p.m.•44 views

CVE-2023-29199

A flaw was found in the vm2 sandbox. When exception handling is triggered, the sanitization logic is not managed with proper exception handling. This issue may allow an attacker to bypass the sandbox protections which can lead to remote code execution on the hypervisor host or the host which is...

9.8CVSS9.3AI score0.03852EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/04/14 6:0 a.m.•44 views

CVE-2022-48468

A vulnerability was found in protobuf-c. This security flaw leads to an unsigned integer overflow in parserequiredmember...

6.2CVSS6.1AI score0.00366EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/04/12 6:32 a.m.•44 views

CVE-2023-29548

The Mozilla Foundation Security Advisory describes this flaw as: A wrong lowering instruction in the ARM64 Ion compiler resulted in a wrong optimization result...

3.4CVSS7.9AI score0.00689EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/04/12 6:31 a.m.•44 views

CVE-2023-29536

The Mozilla Foundation Security Advisory describes this flaw as: An attacker could cause the memory manager to incorrectly free a pointer that addresses attacker-controlled memory, resulting in an assertion, memory corruption, or a potentially exploitable crash...

8.8CVSS8AI score0.00702EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/04/04 7:43 p.m.•44 views

CVE-2023-27487

A flaw was found in envoy. The header x-envoy-original-path should be an internal header, but Envoy does not remove this header from the request at the beginning of request processing when it is sent from an untrusted client. The faked header could then be used for trace logs and grpc logs, used ...

8.2CVSS8.7AI score0.00636EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2023/03/30 1:43 p.m.•44 views

CVE-2021-36156

A flaw was found in Grafana Loki that could allow a remote attacker to traverse directories on the system, caused by improper input validation by the X-Scope-OrgID header value. An attacker could send a specially-crafted URL request containing "dot dot" sequences /../ to view some of the contents...

5.3CVSS5.2AI score0.01489EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/30 9:21 a.m.•44 views

CVE-2023-22999

In the Linux kernel before 5.16.3, drivers/usb/dwc3/dwc3-qcom.c misinterprets the dwc3qcomcreateursusbplatdev return value expects it to be NULL in the error case, whereas it is actually an error pointer...

5.5CVSS5.3AI score0.00261EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/03/26 3:39 p.m.•44 views

CVE-2023-1281

A use-after-free vulnerability was found in the traffic control index filter tcindex in the Linux kernel. The imperfect hash area can be updated while packets are traversing. This issue could allow a local attacker to cause a use-after-free problem, leading to privilege escalation. Mitigation Thi...

7.8CVSS7AI score0.00305EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/21 1:14 p.m.•44 views

CVE-2023-27537

A double free vulnerability exists in libcurl 8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due to missing mutexes or thread...

5.6CVSS7.5AI score0.01856EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/03/17 5:13 a.m.•44 views

CVE-2023-28101

A flaw was found in Flatpak, a system for building, distributing, and running sandboxed desktop applications on Linux. Suppose an attacker publishes a Flatpak app with elevated permissions. In that case, they can hide those permissions from users of the flatpak1 command-line interface by setting...

6.2CVSS5.8AI score0.00887EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/03/17 5:12 a.m.•44 views

CVE-2023-28100

A flaw was found in Flatpak, a system for building, distributing, and running sandboxed desktop applications on Linux. It contains a vulnerability similar to CVE-2017-5226 but using the TIOCLINUX ioctl command instead of TIOCSTI. If a Flatpak app is run on a Linux virtual console such as /dev/tty...

10CVSS7.5AI score0.03169EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2023/03/03 8:30 a.m.•44 views

CVE-2023-25361

A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8 allows attackers to execute code remotely...

7.5CVSS8.6AI score0.00974EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/22 1:31 a.m.•44 views

CVE-2023-25151

A flaw was found in opentelemetry-go. The v0.38.0 release of go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp uses the httpconv.ServerRequest function to annotate metric measurements for the http.server.requestcontentlength, http.server.responsecontentlength, and http.server.duration...

7.5CVSS7.1AI score0.00973EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/02/20 10:29 p.m.•44 views

CVE-2023-23918

A privilege escalation vulnerability exists in Node.js 19.6.1, 18.14.1, 16.19.1 and 14.21.3 that made it possible to bypass the experimental Permissions https://nodejs.org/api/permissions.html feature in Node.js and access non authorized modules by using process.mainModule.require. This only...

7.5CVSS7.7AI score0.02023EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/02/17 3:59 p.m.•44 views

CVE-2023-23946

A vulnerability was found in Git. This security issue occurs when feeding a crafted input to "git apply." A path outside the working tree can be overwritten by the user running "git apply." Mitigation Use git apply --stat to inspect a patch before applying; avoid applying one that creates a...

7.5CVSS7.3AI score0.01144EPSS
Exploits3References5
RedhatCVE
RedhatCVE
•added 2023/02/16 8:59 p.m.•44 views

CVE-2023-23947

A flaw was found in ArgoCD. An improper authorization bug may allow an attacker to update at least one cluster secret, enabling them to change any other cluster secret. The attacker must know the URL for the targeted cluster and additionally it should be authenticated within the ArgoCD API server...

9.1CVSS8.6AI score0.00671EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/15 1:59 p.m.•44 views

CVE-2023-25761

A flaw was found in the Jenkins JUnit plugin. The affected versions of the JUnit Plugin do not escape test case class names in JavaScript expressions, resulting in a stored cross-site scripting XSS vulnerability. This may allow an attacker to control test case class names in the JUnit resources...

5.4CVSS5.3AI score0.00699EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/14 10:59 p.m.•44 views

CVE-2022-25147

A flaw was found in the Apache Portable Runtime Utility APR-util library. This issue may allow a malicious attacker to cause an out-of-bounds write due to an integer overflow when encoding/decoding a very long string using the base64 family of functions...

6.5CVSS8.9AI score0.01417EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2023/02/08 11:56 a.m.•44 views

CVE-2022-3541

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

7.8CVSS2.7AI score0.00334EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/02/07 7:27 p.m.•44 views

CVE-2023-25585

A flaw was found in Binutils. The use of an uninitialized field in the struct module module may lead to application crash and local denial of service...

4.7CVSS7.2AI score0.00376EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2023/02/07 12:57 p.m.•44 views

CVE-2022-37705

A flaw was found in Amanda. The runtar SUID binary executes /usr/bin/tar as root without properly validating its arguments, possibly leading to escalation of privileges from the regular user "amandabackup" to root...

6.7CVSS6.6AI score0.01246EPSS
Exploits2References4
RedhatCVE
RedhatCVE
•added 2023/02/07 5:26 a.m.•44 views

CVE-2022-44267

A vulnerability was found in ImageMagick that is triggered when the software parses a PNG image containing a single dash - in the filename. To remotely exploit this bug, an attacker can upload a malicious PNG with a text chunk that adds a single dash in the name to any site using ImageMagick. The...

7.5CVSS6.4AI score0.76581EPSS
Exploits4References5
RedhatCVE
RedhatCVE
•added 2023/02/06 3:56 a.m.•44 views

CVE-2021-43998

A flaw was found in HashiCorp Vault. In affected versions of HashiCorp Vault and Vault Enterprise, templated ACL policies would always match the first-created entity alias if multiple entity aliases exist for a specified entity and mount combination, potentially resulting in incorrect policy...

6.5CVSS2.9AI score0.01008EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2023/01/26 2:35 p.m.•44 views

CVE-2023-22792

A flaw was found in the rubygem-actionpack. RubyGem's actionpack gem is vulnerable to a denial of service caused by a regular expression denial of service ReDoS flaw in the Action Dispatch module. By sending specially-crafted cookies with an XFORWARDEDHOST header, a remote attacker could exploit...

7.5CVSS7.2AI score0.01695EPSS
Exploits0References4
Total number of security vulnerabilities5000