Lucene search
K
RedhatcveMost viewed

206309 matches found

RedhatCVE
RedhatCVE
•added 2020/03/02 1:32 p.m.•44 views

CVE-2018-20847

An improper computation of ptx0, ptx1, pty0 and pty1 in the function opjgetencodingparameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow...

8.8CVSS4.4AI score0.02174EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/15 8:24 p.m.•44 views

CVE-2019-5010

A null pointer dereference vulnerability was found in the certificate parsing code in Python. This causes a denial of service to applications when parsing specially crafted certificates. This vulnerability is unlikely to be triggered if application enables SSL/TLS certificate validation and accep...

7.5CVSS4.1AI score0.20743EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2020/02/13 12:15 p.m.•44 views

CVE-2020-8647

A flaw was found in the Linux kernel’s virtual console resize functionality. An attacker with local access to virtual consoles can use the virtual console resizing code to gather kernel internal data structures. Mitigation The attack vector can be significantly reduced by preventing users from...

6.1CVSS6.8AI score0.00413EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/02 2:42 p.m.•44 views

CVE-2019-19077

A memory leak flaw was found in the Broadcom NetXtreme HCA driver in the Linux kernel, in the way it handled resource cleanup on the copy to userspace error. This flaw allows a local attacker to trigger this error and crash the system. Mitigation In order to mitigate this issue it is possible to...

5.5CVSS1.2AI score0.00393EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/30 10:15 a.m.•44 views

CVE-2018-7492

A NULL pointer dereference was found in net/rds/rdma.c:rdsrdmamap function in the Linux kernel allowing local attackers to cause a system panic and a denial-of-service...

5.5CVSS5.1AI score0.00676EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2020/01/29 4:7 p.m.•44 views

CVE-2018-7456

A NULL Pointer Dereference occurs in the function TIFFPrintDirectory in tifprint.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 when using the tiffinfo tool to...

6.5CVSS2.9AI score0.03021EPSS
Exploits2References1
RedhatCVE
RedhatCVE
•added 2020/01/21 12:9 p.m.•44 views

CVE-2019-19355

An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ocp-release-operator-sdk. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges...

7CVSS3.6AI score0.00245EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/09 5:9 a.m.•44 views

CVE-2019-17026

Incorrect alias information in IonMonkey JIT compiler for setting array elements could lead to a type confusion. We are aware of targeted attacks in the wild abusing this flaw. This vulnerability affects Firefox ESR 68.4.1, Thunderbird 68.4.1, and Firefox 72.0.1...

8.8CVSS3.4AI score0.46589EPSS
Exploits7References4
RedhatCVE
RedhatCVE
•added 2020/01/02 9:58 p.m.•44 views

CVE-2018-1000222

Libgd version 2.2.5 contains a Double Free Vulnerability vulnerability in gdImageBmpPtr Function that can result in Remote Code Execution . This attack appear to be exploitable via Specially Crafted Jpeg Image can trigger double free. This vulnerability appears to have been fixed in after commit...

8.8CVSS8.7AI score0.042EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/12/30 9:40 p.m.•44 views

CVE-2018-14851

exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG file...

5.9CVSS4.8AI score0.04306EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/12/26 3:46 p.m.•44 views

CVE-2019-2975

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

5.8CVSS5AI score0.03328EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/21 10:0 a.m.•44 views

CVE-2019-18809

A flaw was found in the Afatech 9005 DVB-T receiver driver in the Linux kernel. An attacker, with physical access to the system, could cause the system to crash following a resource cleanup. The highest threat from this vulnerability is to system availability. Mitigation In order to mitigate this...

4.9CVSS1AI score0.00486EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/21 12:7 p.m.•44 views

CVE-2019-19057

Two memory leak flaws were found in the Linux kernel's mwifiexpcieinitevtring function. A local attacker, able to reload the kernel module or hotplug Marvell WiFi hardware using this driver, can cause a denial of service memory consumption by triggering mwifiexmappcimemory failures...

4CVSS1.9AI score0.00788EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/04 4:16 a.m.•44 views

CVE-2017-10346

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Hotspot. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple...

9.6CVSS2AI score0.02962EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/24 12:28 a.m.•44 views

CVE-2018-3139

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

3.1CVSS1.9AI score0.05243EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/23 6:20 a.m.•44 views

CVE-2019-11761

A vulnerability was found in Mozilla Firefox and Thunderbird. Privileged JSONView objects that have been cloned into content can be accessed using a form with a data URI. This flaw bypasses existing defense-in-depth mechanisms and can be exploited over the network...

5.8CVSS2.4AI score0.00791EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2019/10/13 8:7 p.m.•44 views

CVE-2019-16884

runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfslinux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory...

7.5CVSS3.3AI score0.04409EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/10/09 10:51 p.m.•44 views

CVE-2018-10930

A flaw was found in RPC request using gfs3renamereq in glusterfs server. An authenticated attacker could use this flaw to write to a destination outside the gluster volume. Mitigation To limit exposure of gluster server nodes : 1. gluster server should be on LAN and not reachable from public...

6.5CVSS1.5AI score0.02111EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/10/09 10:0 a.m.•44 views

CVE-2017-2666

It was discovered that the code that parsed the HTTP request line permitted invalid characters. This could be exploited, in conjunction with a proxy that also permitted the invalid characters but with a different interpretation, to inject data into the HTTP response. By manipulating the HTTP...

6.5CVSS1.6AI score0.02712EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/09 6:49 a.m.•44 views

CVE-2018-14041

A flaw was found in Bootstrap, where it is vulnerable to Cross-site scripting, caused by improper validation of user-supplied input by the data-target property of scrollspy. This flaw allows a remote attacker to execute a script in a victim's Web browser within the security context of the hosting...

6.1CVSS2.7AI score0.04293EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2019/10/04 4:20 p.m.•44 views

CVE-2019-16869

A flaw was found in Netty, where whitespace before the colon in HTTP headers is mishandled. This flaw allows an attacker to cause HTTP request smuggling. Mitigation Use HTTP/2 instead clear boundaries between requests Disable reuse of backend connections eg. http-reuse never in HAProxy or whateve...

7.5CVSS2.1AI score0.08415EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/09/26 8:20 a.m.•44 views

CVE-2018-21010

A heap-based buffer overflow has been discovered in OpenJPEG in the function colorapplyiccprofile, while applying the color transformation. An application that uses OpenJPEG to parse untrusted images may be vulnerable to this flaw, which would allow an attacker to crash the application or...

8.8CVSS5.3AI score0.02091EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/09/06 2:51 p.m.•44 views

CVE-2019-15846

An out-of-bounds write flaw was found in exim. The function fails to correctly handle situations when a backslash is the last character of the input string and incorrectly sets the pointer that is supposed to point to the last character of the escape sequence upon function exit. That leads to...

10CVSS1AI score0.35736EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/08/08 6:52 p.m.•44 views

CVE-2019-10208

A flaw was discovered in postgresql where arbitrary SQL statements can be executed given a suitable SECURITY DEFINER function. An attacker, with EXECUTE permission on the function, can execute arbitrary SQL as the owner of the function. Mitigation If your use case requires SECURITY DEFINER...

8.8CVSS2.7AI score0.0217EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2019/07/10 9:21 a.m.•44 views

CVE-2019-9827

Hawt Hawtio through 2.5.0 is vulnerable to SSRF, allowing a remote attacker to trigger an HTTP request from an affected server to an arbitrary host via the initial /proxy/ substring of a URI...

9.8CVSS3AI score0.26803EPSS
Exploits3References3
RedhatCVE
RedhatCVE
•added 2019/06/26 11:21 a.m.•44 views

CVE-2019-11039

Function iconvmimedecodeheaders in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to integer overflow when parsing MIME headers. This may lead to information disclosure or crash...

9.1CVSS2.1AI score0.0313EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/06/14 8:52 a.m.•44 views

CVE-2019-5018

An exploitable use after free vulnerability exists in the window function functionality of Sqlite3 3.26.0. A specially crafted SQL command can cause a use after free vulnerability, potentially resulting in remote code execution. An attacker can send a malicious SQL command to trigger this...

8.1CVSS4.6AI score0.06683EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2019/04/11 8:50 p.m.•44 views

CVE-2018-6616

In OpenJPEG 2.3.0, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...

5.5CVSS5.3AI score0.01745EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2019/02/03 3:49 a.m.•44 views

CVE-2018-16858

It was found that libreoffice was vulnerable to a directory traversal attack which could be used to execute arbitrary macros bundled with a document. An attacker could craft a document, which when opened by LibreOffice, would execute a Python method from a script in any arbitrary file system...

9.8CVSS4.8AI score0.67547EPSS
Exploits10References4
RedhatCVE
RedhatCVE
•added 2019/01/16 2:35 p.m.•44 views

CVE-2019-2510

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS2AI score0.03443EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2018/12/21 10:50 a.m.•44 views

CVE-2018-18245

Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified checkload plugin to NRPE...

5.4CVSS2.3AI score0.02552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2018/10/17 4:49 a.m.•44 views

CVE-2018-11039

Spring Framework versions 5.0.x prior to 5.0.7, versions 4.3.x prior to 4.3.18, and older unsupported versions allow web applications to change the HTTP request method to any HTTP method including TRACE using the HiddenHttpMethodFilter in Spring MVC. If an application has a pre-existing XSS...

5.9CVSS2AI score0.02781EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/10/05 7:49 p.m.•44 views

CVE-2018-17966

ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c...

6.5CVSS3.1AI score0.01714EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2018/09/06 5:50 a.m.•44 views

CVE-2018-16540

It was discovered that the ghostscript PDF14 compositor did not properly handle the copying of a device. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or, possibly, execute arbitrary code in the ghostscript context via a specially crafted PostScrip...

9.3CVSS1.9AI score0.92499EPSS
Exploits4References2
RedhatCVE
RedhatCVE
•added 2018/09/05 9:19 a.m.•44 views

CVE-2018-14618

curl before version 7.61.1 is vulnerable to a buffer overrun in the NTLM authentication code. The internal function Curlntlmcoremknthash multiplies the length of the password by two SUM to figure out how large temporary storage area to allocate from the heap. The length value is then subsequently...

10CVSS2.1AI score0.10823EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/08/30 6:48 a.m.•44 views

CVE-2018-16062

An out-of-bounds read was discovered in elfutils in the way it reads DWARF address ranges information. Function dwarfgetaranges in dwarfgetaranges.c does not properly check whether it reads beyond the limits of the ELF section. An attacker could use this flaw to cause a denial of service via a...

5.5CVSS3AI score0.01729EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/07/25 6:50 a.m.•44 views

CVE-2018-6156

Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted video file...

8.8CVSS3.8AI score0.00861EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/07/24 6:19 a.m.•44 views

CVE-2018-14371

The getLocalePrefix function in ResourceManager.java in Eclipse Mojarra before 2.3.7 is affected by Directory Traversal via the loc parameter. A remote attacker can download configuration files or Java bytecodes from applications. Mitigation There is no currently known mitigation for this flaw...

7.5CVSS5.2AI score0.04425EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/07/04 5:48 a.m.•44 views

CVE-2018-12910

An out-of-bounds read has been discovered in libsoup when getting cookies from a URI with empty hostname. An attacker may use this flaw to cause a crash in the application...

9.8CVSS0.7AI score0.04188EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/06/07 9:48 p.m.•44 views

CVE-2018-11813

libjpeg 9c has a large loop because readpixel in rdtarga.c mishandles EOF...

7.5CVSS1.6AI score0.03162EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/05/17 9:19 p.m.•44 views

CVE-2018-11037

In Exiv2 0.26, the Exiv2::PngImage::printStructure function in pngimage.cpp allows remote attackers to cause an information leak via a crafted file...

6.5CVSS4.8AI score0.02363EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2018/05/12 9:23 a.m.•44 views

CVE-2018-4121

An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit"...

8.8CVSS5.5AI score0.13207EPSS
Exploits5References1
RedhatCVE
RedhatCVE
•added 2018/04/18 12:51 p.m.•44 views

CVE-2018-2771

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Locking. Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocol...

4.4CVSS1.6AI score0.03592EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/03/13 6:19 a.m.•44 views

CVE-2018-1323

The IIS/ISAPI specific code in the Apache Tomcat JK ISAPI Connector 1.2.0 to 1.2.42 that normalised the requested path before matching it to the URI-worker map did not handle some edge cases correctly. If only a sub-set of the URLs supported by Tomcat were exposed via IIS, then it was possible fo...

7.5CVSS2.6AI score0.44244EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/03/07 8:52 a.m.•44 views

CVE-2018-6058

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11215. Reason: This candidate is a reservation duplicate of CVE-2017-11215. Notes: All CVE users should reference CVE-2017-11215 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

10CVSS9.1AI score0.06076EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2018/01/03 10:49 p.m.•44 views

CVE-2017-5753

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

5.6CVSS3.1AI score0.93838EPSS
Exploits9References2
RedhatCVE
RedhatCVE
•added 2017/12/08 7:49 a.m.•44 views

CVE-2017-3737

OpenSSL 1.0.2 starting from version 1.0.2b introduced an "error state" mechanism. The intent was that if a fatal error occurred during a handshake then OpenSSL would move into the error state and would immediately fail if you attempted to continue the handshake. This works as designed for the...

5.9CVSS1.7AI score0.78675EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2017/10/18 11:49 a.m.•44 views

CVE-2017-15388

Iteration through non-finite points in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page...

8.8CVSS3.1AI score0.01673EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2017/10/09 8:51 a.m.•44 views

CVE-2017-14532

ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c...

9.8CVSS2.8AI score0.02609EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2017/10/02 1:29 p.m.•44 views

CVE-2017-14492

A heap buffer overflow was discovered in dnsmasq in the IPv6 router advertisement RA handling code. An attacker on the local network segment could send crafted RAs to dnsmasq which would cause it to crash or, potentially, execute arbitrary code. This issue only affected configurations using one o...

9.8CVSS3.5AI score0.93307EPSS
Exploits5References2
Total number of security vulnerabilities5000