Enterprise Linux Server Eus Security Vulnerabilities and Issues — Page 13 of Enterprise Linux Server Eus CVE List

Lucene search

RedhatEnterprise Linux Server Eus

622 matches found

CVE•added 2018/07/27 6:29 p.m.•66 views

CVE-2017-2590

A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's permissions while modifying CAs in Dogtag. An authenticated, unauthorized attacker could use this flaw to delete, disable, or enable CAs causing various denial of service ...

8.1CVSS7.7AI score0.00177EPSS

CVE•added 2013/12/11 3:55 p.m.•65 views

CVE-2013-6671

The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird before 24.2, and SeaMonkey before 2.23 allows remote attackers to execute arbitrary code via crafted use of JavaScript code for ordered list elements.

10CVSS9.6AI score0.10399EPSS

CVE•added 2018/07/27 8:29 p.m.•64 views

CVE-2017-15101

A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacker could cause a denial of service condition or potentially even arbitrary code execution.

9.8CVSS8AI score0.00316EPSS

CVE•added 2012/06/05 10:55 p.m.•63 views

CVE-2012-1798

The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted EXIF IFD in a TIFF image.

6.5CVSS6.7AI score0.01412EPSS

CVE•added 2017/07/25 6:29 p.m.•63 views

CVE-2015-3149

The Hotspot component in OpenJDK8 as packaged in Red Hat Enterprise Linux 6 and 7 allows local users to write to arbitrary files via a symlink attack.

5.5CVSS5.2AI score0.00067EPSS

CVE•added 2012/08/29 10:56 a.m.•58 views

CVE-2012-3976

Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, and SeaMonkey before 2.12 do not properly handle onLocationChange events during navigation between different https sites, which allows remote attackers to spoof the X.509 certificate information in the address bar via a crafted web page.

4.3CVSS8.6AI score0.00776EPSS

CVE•added 2013/05/16 11:45 a.m.•58 views

CVE-2013-2728

Adobe Flash Player before 10.3.183.86 and 11.x before 11.7.700.202 on Windows and Mac OS X, before 10.3.183.86 and 11.x before 11.2.202.285 on Linux, before 11.1.111.54 on Android 2.x and 3.x, and before 11.1.115.58 on Android 4.x; Adobe AIR before 3.7.0.1860; and Adobe AIR SDK & Compiler before 3....

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•58 views

CVE-2013-3332

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/21 6:55 p.m.•57 views

CVE-2012-6137

rhn-migrate-classic-to-rhsm tool in Red Hat subscription-manager does not verify the Red Hat Network Classic server's X.509 certificate when migrating to a Certificate-based Red Hat Network, which allows remote man-in-the-middle attackers to obtain sensitive information such as user credentials.

4.3CVSS7.1AI score0.0025EPSS

CVE•added 2012/11/21 12:55 p.m.•54 views

CVE-2012-5830

Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 on Mac OS X allows remote attackers to execute arbitrary code via an HTML document.

8.8CVSS8.9AI score0.01446EPSS

CVE•added 2013/05/16 11:45 a.m.•54 views

CVE-2013-3327

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•54 views

CVE-2013-3330

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•53 views

CVE-2013-3324

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•53 views

CVE-2013-3326

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•53 views

CVE-2013-3333

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•50 views

CVE-2013-3329

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•49 views

CVE-2013-3335

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•48 views

CVE-2013-3325

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•48 views

CVE-2013-3328

10CVSS7.7AI score0.03998EPSS

CVE•added 2013/05/16 11:45 a.m.•46 views

CVE-2013-3331

10CVSS7.7AI score0.03998EPSS

CVE•added 2014/11/14 3:59 p.m.•46 views

CVE-2014-8567

The mod_auth_mellon module before 0.8.1 allows remote attackers to cause a denial of service (Apache HTTP server crash) via a crafted logout request that triggers a read of uninitialized data.

9.4CVSS6.3AI score0.04434EPSS

CVE•added 2013/05/16 11:45 a.m.•44 views

CVE-2013-3334

10CVSS7.7AI score0.03998EPSS

Total number of security vulnerabilities622