Lucene search
K
RedhatcveMost viewed

206304 matches found

RedhatCVE
RedhatCVE
•added 2020/07/31 1:44 p.m.•42 views

CVE-2020-16135

A flaw was found in libssh. A NULL pointer dereference in tftpserver.c if sshbuffernew returns NULL. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicabili...

4.3CVSS1AI score0.04105EPSS
Exploits1References4
RedhatCVE
RedhatCVE
•added 2020/07/15 9:39 a.m.•42 views

CVE-2020-14578

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols ...

4.3CVSS2.9AI score0.04044EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/07/10 9:51 a.m.•42 views

CVE-2020-8617

An assertion failure was found in BIND, which checks the validity of messages containing TSIG resource records. This flaw allows an attacker that knows or successfully guesses the name of the TSIG key used by the server to use a specially-crafted message, potentially causing a BIND server to reac...

4.3CVSS3.3AI score0.93422EPSS
Exploits5References4
RedhatCVE
RedhatCVE
•added 2020/07/02 9:50 a.m.•42 views

CVE-2020-10760

A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba...

4CVSS2.2AI score0.02659EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/06/23 11:25 a.m.•42 views

CVE-2020-10769

A buffer over-read flaw was found in cryptoauthencextractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than 4 bytes, and is not following 4-byte alignment boundary guidelines, it causes a buffer over-read threat, leading to a system crash...

5.5CVSS1.4AI score0.00491EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/06/03 2:52 a.m.•42 views

CVE-2020-12406

The Mozilla Foundation Security Advisory describes this flaw as: Mozilla developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code...

9.3CVSS2.5AI score0.0102EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/06/01 2:20 p.m.•42 views

CVE-2019-20806

A NULL pointer dereference flaw was found in tw5864handleframe function in drivers/media/pci/tw5864/tw5864-video.c in the TW5864 Series Video media driver. The pointer 'vb' is assigned, but not validated before its use, and can lead to a denial of service. This flaw allows a local attacker with...

4.4CVSS2.1AI score0.00384EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/05/28 4:25 a.m.•42 views

CVE-2020-13361

An out-of bounds access flaw was found in the ES1370 audio device emulator of the QEMU. This flaw occurs in the 'audiopcmswread', while reading an audio byte stream from a channel if the channel frame count is set to a malicious value. A guest user or process may use this flaw to crash the QEMU...

3.3CVSS2.6AI score0.0037EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/05/21 7:21 p.m.•42 views

CVE-2020-13253

An out-of-bounds read-access flaw was found in the SD Memory Card emulator of the QEMU. This flaw occurs while performing block write commands via sdhciwrite, if a guest user has sent an 'address' which is out-of-bounds of 's-wpgroups'. A guest user or process may use this flaw to crash the QEMU...

2.1CVSS3AI score0.00428EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/04/29 6:10 a.m.•43 views

CVE-2020-10720

A flaw was found in the Linux kernel’s implementation of GRO. This flaw allows an attacker with local access to crash the system. Mitigation Disabling GSO on the cards using ethtool will prevent this codepath from being taken...

5.5CVSS2AI score0.00323EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/24 8:3 a.m.•42 views

CVE-2019-12519

A flaw was found in Squid through version 4.7. When handling the tag esi:when, when ESI is enabled, Squid calls the ESIExpression::Evaluate function which uses a fixed stack buffer to hold the expression. While processing the expression, there is no check to ensure that the stack won't overflow...

7.5CVSS4.2AI score0.06734EPSS
Exploits0References5
RedhatCVE
RedhatCVE
•added 2020/04/15 6:0 a.m.•42 views

CVE-2020-10687

A flaw was discovered in Undertow where HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an attacker to poison a web-cache, perform an XSS attack, or obtain sensitive information from...

6.4CVSS1.9AI score0.02712EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 12:23 p.m.•42 views

CVE-2019-17133

A vulnerability was found in the Linux kernel's generic WiFi ESSID handling implementation. The flaw allows a system to join a wireless network where the ESSID is longer than the maximum length of 32 characters, which can cause the system to crash or execute code...

9.8CVSS4.2AI score0.06652EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/09 11:3 a.m.•42 views

CVE-2020-11653

An issue was discovered in Varnish Cache before 6.0.6 LTS, 6.1.x and 6.2.x before 6.2.3, and 6.3.x before 6.3.2. It occurs when communication with a TLS termination proxy uses PROXY version 2. There can be an assertion failure and daemon restart, which causes a performance loss. Mitigation An use...

7.5CVSS2.5AI score0.02106EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/09 7:13 a.m.•42 views

CVE-2018-12126

Modern Intel microprocessors implement hardware-level micro-optimizations to improve the performance of writing data back to CPU caches. The write operation is split into STA STore Address and STD STore Data sub-operations. These sub-operations allow the processor to hand-off address generation...

6.5CVSS2.3AI score0.01497EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/08 9:46 p.m.•42 views

CVE-2018-19364

hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to for example a use-after-free outcome...

5.5CVSS1.9AI score0.0053EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/04/08 8:22 p.m.•42 views

CVE-2017-6001

It was found that the original fix for CVE-2016-6786 was incomplete. There exist a race between two concurrent sysperfeventopen calls when both try and move the same pre-existing software group into a hardware context...

7.6CVSS1.2AI score0.01674EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/04/08 5:21 p.m.•42 views

CVE-2016-7425

A heap-buffer overflow vulnerability was found in the arcmsriopmessagexfer function in 'drivers/scsi/arcmsr/arcmsrhba.c' file in the Linux kernel through 4.8.2. The function does not restrict a certain length field, which allows local users to gain privileges or cause a denial of service via an...

7.8CVSS6.7AI score0.0043EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2020/04/08 2:5 a.m.•42 views

CVE-2020-6822

The Mozilla Foundation Security Advisory describes this flaw as: On 32-bit builds, an out of bounds write could have occurred when processing an image larger than 4 GB in GMPDecodeData. It is possible that with enough effort this could have been exploited to run arbitrary code...

8.8CVSS2.2AI score0.01293EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/05 11:9 a.m.•42 views

CVE-2019-14815

A vulnerability found in the Linux kernel's WMM implementation for Marvell WiFi-based hardware mwifiex could lead to a denial of service or allow arbitrary code execution. For this flaw to be executed, the attacker must be both local and privileged. There is no mitigation to this flaw. A patch ha...

7.8CVSS4.6AI score0.00488EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/05 5:17 a.m.•42 views

CVE-2019-11049

In PHP versions 7.3.x below 7.3.13 and 7.4.0 on Windows, when supplying custom headers to mail function, due to mistake introduced in commit 78f4b4a2dcf92ddbccea1bb95f8390a18ac3342e, if the header is supplied in lowercase, this can result in double-freeing certain memory locations...

9.8CVSS3.3AI score0.04218EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/04 11:25 p.m.•42 views

CVE-2020-7053

A use-after-free flaw was found in the Linux kernel’s GPU driver functionality when destroying GEM context. A local user could use this flaw to crash the system or potentially escalate their privileges. Mitigation In case of dedicated graphic card presence and i915 GPU is not being used, you can...

7.8CVSS1.5AI score0.00617EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/03 8:31 p.m.•42 views

CVE-2020-1927

A flaw was found in Apache HTTP Server httpd versions 2.4.0 to 2.4.41. Redirects configured with modrewrite that were intended to be self-referential might be fooled by encoded newlines and redirected instead to an unexpected URL within the request URL...

6.1CVSS7.2AI score0.56691EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/02 7:1 p.m.•42 views

CVE-2020-6096

A signed comparison vulnerability was found in GNU libc in the ARMv7 implementation of memcpy. The flaw affects the third argument to memcpy that specifies the number of bytes to copy. An underflow on the third argument could lead to undefined behavior such as out-of-bounds memory write and...

8.1CVSS4.2AI score0.05223EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/04/02 2:8 p.m.•42 views

CVE-2019-15666

A flaw was found in the Linux kernel. When xfrm policy removal occurs a system crash could occur. These policy changes generally occur through the ip command or a netlink socket...

6.7CVSS2.3AI score0.0173EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/04/01 7:59 p.m.•42 views

CVE-2018-5168

Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme element. This could allow a malicious site to install a theme without user interaction which could contain offensive or embarrassing images. This vulnerability affects...

6.1CVSS1.5AI score0.0238EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/03/30 8:1 p.m.•42 views

CVE-2020-10698

A flaw was found in Ansible Tower when running jobs. This flaw allows an attacker to access the stdout of the executed jobs which are run from other organizations. Some sensible data can be disclosed. However, critical data should not be disclosed, as it should be protected by the nolog flag when...

3.3CVSS0.7AI score0.00268EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/03/30 6:31 p.m.•42 views

CVE-2019-20633

GNU patch through 2.7.6 contains a freeplinepend Double Free vulnerability in the function anotherhunk in pch.c that can cause a denial of service via a crafted patch file. NOTE: this issue exists because of an incomplete fix for CVE-2018-6952...

7.5CVSS6AI score0.08411EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/03/30 8:18 a.m.•42 views

CVE-2019-11070

WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, or Smooth Streaming, an error resulting in deanonymization. This issue was corrected by changing the way livestreams are downloaded...

6.5CVSS1.6AI score0.03232EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/14 1:55 p.m.•42 views

CVE-2018-14612

An issue was discovered in the btrfs filesystem code in the Linux kernel. An invalid NULL pointer dereference in btrfsrootnode when mounting a crafted btrfs image is due to a lack of chunk block group mapping validation in btrfsreadblockgroups in the fs/btrfs/extent-tree.c function and a lack of...

7.1CVSS2.4AI score0.0259EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2020/02/05 9:14 a.m.•42 views

CVE-2019-10178

It was found that the Token Processing Service TPS did not properly sanitize the Token IDs from the "Activity" page, enabling a Stored Cross Site Scripting XSS vulnerability. An unauthenticated attacker could trick an authenticated victim into creating a specially crafted activity, which would...

6.1CVSS3.2AI score0.00961EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/02/02 2:42 p.m.•42 views

CVE-2019-19077

A memory leak flaw was found in the Broadcom NetXtreme HCA driver in the Linux kernel, in the way it handled resource cleanup on the copy to userspace error. This flaw allows a local attacker to trigger this error and crash the system. Mitigation In order to mitigate this issue it is possible to...

5.5CVSS1.2AI score0.00393EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/30 8:9 p.m.•42 views

CVE-2019-17361

In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoint to execute arbitrary code on the salt-api host...

9.8CVSS9.9AI score0.15106EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/17 3:33 a.m.•42 views

CVE-2019-13233

A vulnerability was found in the arch/x86/lib/insn-eval.c function in the Linux kernel. An attacker could corrupt the memory due to a flaw in use-after-free access to an LDT entry caused by a race condition between modifyldt and a BR exception for an MPX bounds violation...

7CVSS2.7AI score0.00469EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/01/15 11:39 a.m.•42 views

CVE-2020-2654

Vulnerability in the Java SE product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE...

4.3CVSS3.1AI score0.03299EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2020/01/12 3:32 a.m.•42 views

CVE-2018-3283

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Logging. Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise...

4.4CVSS1.9AI score0.02453EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2020/01/08 3:56 a.m.•42 views

CVE-2019-15213

A use-after-free flaw was found in the USB DVB media access driver in the Linux kernel. This flaw could allow an attacker to crash the system at device disconnect or for a kernel information leak problem to occur. The highest threat from this vulnerability is to system availability. Mitigation...

4.9CVSS0.5AI score0.00624EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2020/01/07 11:9 p.m.•42 views

CVE-2019-17017

Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.4 and Firefox 72...

8.8CVSS1.1AI score0.02489EPSS
Exploits0References4
RedhatCVE
RedhatCVE
•added 2020/01/05 3:33 a.m.•42 views

CVE-2017-3641

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: DML. Supported versions that are affected are 5.5.56 and earlier, 5.6.36 and earlier and 5.7.18 and earlier. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocol...

4CVSS1.3AI score0.03225EPSS
Exploits0References2
RedhatCVE
RedhatCVE
•added 2019/12/19 8:37 a.m.•42 views

CVE-2018-13785

In libpng 1.6.34, a wrong calculation of rowfactor in the pngcheckchunklength function pngrutil.c may trigger an integer overflow and resultant divide-by-zero while processing a crafted PNG file, leading to a denial of service...

6.5CVSS4.3AI score0.0447EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/12/13 10:21 p.m.•42 views

CVE-2019-19535

A flaw was found in the Linux kernel’s implementation of the Peak CANBUS USB device driver. An information leak caused by the device could allow a local attacker to possibly gain private information from uninitialized kernel memory...

4.6CVSS3.7AI score0.00504EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/12/13 8:38 p.m.•42 views

CVE-2019-19526

A use-after-free flaw was found in the pn533usbprobe USB interface in the Linux kernel. If the driver registration fails it needs to do all the cleanup activity and free all the related resources. A malicious USB device can cause this process to fail, causing a use-after-free vulnerability. Syste...

4.9CVSS1AI score0.00433EPSS
Exploits0References7
RedhatCVE
RedhatCVE
•added 2019/12/10 11:20 p.m.•42 views

CVE-2019-18801

An issue was discovered in Envoy 1.12.0. An untrusted remote client may send HTTP/2 requests that write to the heap outside of the request buffers when the upstream is HTTP/1. This may be used to corrupt nearby heap contents leading to a query-of-death scenario or may be used to bypass Envoy's...

9.8CVSS2.7AI score0.02502EPSS
Exploits1References5
RedhatCVE
RedhatCVE
•added 2019/11/18 9:7 p.m.•42 views

CVE-2019-12068

A flaw was found in QEMU's LSI53C895A device emulator. When executing LSI scripts, a crafted sequence of I/O requests may cause the emulator to enter into an infinite loop. This vulnerability could be executed locally and would affect the availability of the system...

4.3CVSS1.9AI score0.00514EPSS
Exploits0References3
RedhatCVE
RedhatCVE
•added 2019/11/05 10:21 p.m.•42 views

CVE-2017-10281

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144; JRockit: R28.3.15. Easily exploitable vulnerability allows unauthenticated attacke...

5.3CVSS2.8AI score0.03305EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/11/01 1:25 p.m.•42 views

CVE-2019-15141

WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service application crash resulting from a heap-based buffer over-read via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, and...

8.1CVSS4.9AI score0.03708EPSS
Exploits2References3
RedhatCVE
RedhatCVE
•added 2019/10/29 4:14 a.m.•42 views

CVE-2018-2618

It was discovered that the key agreement implementations in the JCE component of OpenJDK did not guarantee sufficient strength of used keys to adequately protect generated shared secret. This could make it easier to break data encryption by attacking key agreement rather than the encryption using...

5.9CVSS2.5AI score0.04721EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/28 10:20 p.m.•42 views

CVE-2017-10078

It was discovered that the Nashorn JavaScript engine in the Scripting component of OpenJDK could allow scripts to access Java APIs even when access to Java APIs was disabled. An untrusted JavaScript executed by Nashorn could use this flaw to bypass intended restrictions...

8.1CVSS2.5AI score0.02402EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2019/10/14 12:21 p.m.•42 views

CVE-2019-15921

A flaw was found in the genlregisterfamily function in the Linux kernel. An attacker able to induce the error conditions could use this flaw to crash the system. The highest threat from this vulnerability is to system availability. Mitigation Mitigation for this issue is either not available or t...

4.7CVSS1.5AI score0.00497EPSS
Exploits1References3
RedhatCVE
RedhatCVE
•added 2019/10/12 1:49 a.m.•42 views

CVE-2018-2637

It was discovered that the JMX component of OpenJDK failed to properly set the deserialization filter for the SingleEntryRegistry in certain cases. A remote attacker could possibly use this flaw to bypass intended deserialization restrictions...

7.4CVSS3.1AI score0.04618EPSS
Exploits0References1
Total number of security vulnerabilities5000