Lucene search
K
RedhatOpenstack

210 matches found

CVE
CVE
added 2020/01/31 9:38 p.m.255 views

CVE-2015-6815

CVE-2015-6815 affects QEMU with e1000 NIC emulation. The process_tx_desc path in hw/net/e1000.c improperly handles transmit descriptor data, enabling a remote attacker within the local network to trigger an infinite loop and guest crash (Denial of Service). This vulnerability is tied to QEMU befo...

3.5CVSS5AI score0.00982EPSS
CVE
CVE
added 2020/03/31 4:20 p.m.254 views

CVE-2019-14905

The CVE-2019-14905 issue affects Ansible Engine’s nxos_file_copy module, where the filename parameter could be crafted to inject OS commands on NXOS devices. This is a local attack with potential confidentiality, integrity, and availability impacts as described (loss of confidentiality, etc.). Af...

7.3CVSS6AI score0.00736EPSS
CVE
CVE
added 2018/06/13 4:0 p.m.252 views

CVE-2018-11806

CVE-2018-11806 affects QEMU where the SLiRP networking back-end (mbuf.c) can perform a heap-based buffer overflow when reassembling fragmented datagrams. The described impact in the connected documents includes a potential host compromise via arbitrary code execution or denial of service due to a...

8.2CVSS8.4AI score0.00823EPSS
CVE
CVE
added 2018/01/18 2:0 a.m.250 views

CVE-2018-2665

CVE-2018-2665 affects Oracle MySQL Server (Server: Optimizer). Affected releases include MySQL 5.5.58 and older, 5.6.38 and older, and 5.7.20 and older. The vulnerability is exploitable by a low-privileged attacker who can access the server over the network, and can lead to an unauthorized hang o...

6.8CVSS6.3AI score0.03952EPSS
CVE
CVE
added 2019/10/16 3:23 p.m.250 views

CVE-2019-11281

CVE-2019-11281 affects Pivotal RabbitMQ and RabbitMQ for PCF where two UI components (virtual host limits page and federation management UI) fail to sanitize user input. A remote authenticated administrator could craft a cross-site scripting attack to access virtual hosts and policy management in...

4.8CVSS4.9AI score0.01165EPSS
CVE
CVE
added 2018/04/19 2:0 a.m.246 views

CVE-2018-2771

CVE-2018-2771 affects the MySQL Server component (subcomponent: Server: Locking) across Oracle MySQL releases. Affected series include 5.5.59 and earlier, 5.6.39 and earlier, and 5.7.21 and earlier. The vulnerability is described as difficult to exploit but can allow a high-privilege attacker wit...

4.4CVSS5AI score0.03592EPSS
CVE
CVE
added 2018/04/19 2:0 a.m.246 views

CVE-2018-2819

CVE-2018-2819 affects the MySQL Server component (InnoDB) of Oracle MySQL. Affected versions are 5.5.59 and earlier, 5.6.39 and earlier, and 5.7.21 and earlier. The vulnerability enables a low-privileged attacker with network access via multiple protocols to cause a hang or a frequent crash (comp...

6.5CVSS6AI score0.03171EPSS
CVE
CVE
added 2018/04/19 2:0 a.m.242 views

CVE-2018-2761

CVE-2018-2761 affects the MySQL Server component (Client programs) of Oracle MySQL. Affected ranges are 5.5.59 and earlier, 5.6.39 and earlier, and 5.7.21 and earlier. It enables an unauthenticated, network-accessible attacker to cause the MySQL Server to hang or crash (partial DOS). The descript...

5.9CVSS5.6AI score0.0401EPSS
CVE
CVE
added 2018/04/19 2:0 a.m.239 views

CVE-2018-2781

CVE-2018-2781 is a vulnerability in the MySQL Server component (subcomponent: Server: Optimizer). Affected versions are 5.5.59 and earlier, 5.6.39 and earlier, and 5.7.21 and earlier. The fixed text indicates an easily exploitable issue that allows a high-privileged attacker with network access v...

4.9CVSS5.4AI score0.03294EPSS
CVE
CVE
added 2018/06/17 5:0 p.m.237 views

CVE-2018-11219

CVE-2018-11219 is a Redis Lua subsystem integer overflow vulnerability (bounds checking failure) affecting Redis up to versions prior to 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2. The issue originates in lua_struct.c:b_unpack() and can lead to memory corruption or a crash. Public details ...

9.8CVSS7.9AI score0.07056EPSS
CVE
CVE
added 2017/10/19 5:0 p.m.236 views

CVE-2017-10378

CVE-2017-10378 affects the MySQL Server component (Server: Optimizer) with affected versions 5.5.57 and earlier, 5.6.37 and earlier, and 5.7.11 and earlier. The vulnerability is exploitable remotely over multiple protocols by a low-privilege user and can cause the MySQL Server to hang or crash (D...

6.5CVSS6.2AI score0.03264EPSS
CVE
CVE
added 2017/08/08 3:0 p.m.235 views

CVE-2017-3653

CVE-2017-3653 affects the MySQL Server component (subcomponent: Server: DDL) in Oracle MySQL. Affected: MySQL Server versions 5.5.56 and earlier, 5.6.36 and earlier, and 5.7.18 and earlier. Description in connected advisories confirms the vulnerability is exploitable with network access via multi...

3.5CVSS3.4AI score0.01903EPSS
CVE
CVE
added 2020/03/11 6:47 p.m.234 views

CVE-2020-1733

The CVE-2020-1733 entry concerns a race-condition in Ansible Engine when using become_user: Ansible creates the temporary directory in /var/tmp with umask 77 during module execution, and the operation can succeed even if the directory already exists and is owned by another user. An attacker could...

5CVSS5.8AI score0.004EPSS
CVE
CVE
added 2019/11/26 1:1 p.m.233 views

CVE-2019-14856

CVE-2019-14856 affects Ansible; connected updates show that openSUSE/SUSE patches (ansible 2.9.6 in openSUSE-2020-513 and 2.9.6 in SUSE-2020-0523) fix this and related CVEs by addressing an incomplete fix for CVE-2019-10206 and other issues (e.g., passwords in prompts/log leakage). The issue orig...

6.5CVSS6.3AI score0.01649EPSS
CVE
CVE
added 2017/08/08 3:0 p.m.230 views

CVE-2017-3651

CVE-2017-3651 affects Oracle MySQL Server’s Client mysqldump component. Affected releases include 5.5.56 and earlier, 5.6.36 and earlier, and 5.7.18 and earlier. The issue is described in multiple advisories as a vulnerability that enables a low-privileged, network-accessing attacker to perform u...

4.3CVSS4AI score0.02049EPSS
CVE
CVE
added 2020/01/02 2:15 p.m.230 views

CVE-2019-14859

CVE-2019-14859 affects the Python library python-ecdsa. A flaw exists in all versions before 0.13.3 where signatures are not properly verified for DER encoding, allowing a malformed signature to be accepted and making signatures malleable. This could enable an attacker to use a malleable signatur...

9.1CVSS8.8AI score0.01596EPSS
CVE
CVE
added 2020/02/08 6:2 p.m.221 views

CVE-2015-5741

CVE-2015-5741 : The Go net/http implementation (net/http/transfer.go) before 1.4.3 fails to correctly parse HTTP headers, enabling remote attackers to perform HTTP request smuggling via requests containing both Content-Length and Transfer-Encoding. This is documented across multiple sources in th...

9.8CVSS9AI score0.02704EPSS
CVE
CVE
added 2017/10/19 5:0 p.m.220 views

CVE-2017-10384

CVE-2017-10384 affects the MySQL Server component (Server: DDL) of Oracle MySQL. Affected versions include 5.5.57 and earlier, 5.6.37 and earlier, and 5.7.19 and earlier. An attacker with network access via multiple protocols and low privileges can cause a hang or a complete denial of service in ...

6.5CVSS5.5AI score0.03103EPSS
CVE
CVE
added 2020/03/16 3:5 p.m.220 views

CVE-2020-1735

CVE-2020-1735 is a vulnerability in the Ansible Engine where the fetch module can be intercepted, enabling an attacker to inject a new path and choose a different destination path on the controller. The issue affects all 2.7.x, 2.8.x and 2.9.x branches. Connected advisories confirm multiple vendo...

4.6CVSS5.2AI score0.00487EPSS
CVE
CVE
added 2017/08/08 3:0 p.m.219 views

CVE-2017-3641

CVE-2017-3641 details (normal mode) : A vulnerability in the MySQL Server component (subcomponent: Server: DML) affecting MariaDB/MySQL Server. Affected versions include 5.5.56 and earlier, 5.6.36 and earlier, and 5.7.18 and earlier. The issue is described as exploitable by a high-privilege attac...

4.9CVSS4.9AI score0.03225EPSS
CVE
CVE
added 2018/06/17 5:0 p.m.219 views

CVE-2018-11218

CVE-2018-11218 describes a memory corruption vulnerability in the Redis Lua subsystem’s cmsgpack handling, caused by stack-based buffer overflows. Affected Redis versions are before 3.2.12, 4.x before 4.0.10, and 5.x before 5.0 RC2. Several connected sources reiter the issue as a Redis component ...

9.8CVSS8.1AI score0.59422EPSS
CVE
CVE
added 2018/03/13 9:0 p.m.218 views

CVE-2018-1000127

The CVE-2018-1000127 issue affects memcached prior to 1.4.37, caused by an Integer Overflow in items.c:item_free() that can lead to data corruption and deadlocks due to reusing hash-table entries from a free list. It is exploitable over the network to the memcached service. The vulnerability is f...

7.5CVSS7.7AI score0.02316EPSS
CVE
CVE
added 2019/07/30 10:12 p.m.214 views

CVE-2019-10156

CVE-2019-10156 affects Ansible: templating flaw in versions before 2.6.18, 2.7.12 and 2.8.2 enables information disclosure through unintended variable substitution (contents of any variable may be disclosed). Several connected advisories confirm fixes/upgrades: e.g., Debian stable (buster) update...

5.5CVSS5.7AI score0.01759EPSS
CVE
CVE
added 2020/03/16 3:7 p.m.214 views

CVE-2020-1740

CVE-2020-1740 is about Ansible Engine Vault editing: on the same host, ansible-vault edit can expose old/new secrets due to mkstemp/two-step write. Connected documents consistently confirm this vulnerability across multiple distributions (Astra Linux, Debian, Fedora/Red Hat, Alpine, Amazon Linux)...

4.7CVSS5.2AI score0.00374EPSS
CVE
CVE
added 2020/02/19 2:41 p.m.212 views

CVE-2012-6685

Nokogiri prior to 1.5.4 is vulnerable to XML External Entity (XXE) attacks. The issue arises in the XML parsing path (XXE) and is documented under CVE-2012-6685. Exploitation details are not provided beyond the XXE description. Affected software: Nokogiri (Ruby library). Root cause: XXE in XML pr...

7.5CVSS7.3AI score0.02115EPSS
CVE
CVE
added 2017/08/08 3:0 p.m.211 views

CVE-2017-3636

CVE-2017-3636 affects the MySQL/MariaDB stack (MySQL Server component, subcomponent: Client programs). Public details in connected documents confirm affected versions include 5.5.56 and earlier and 5.6.36 and earlier (as per initial). The vulnerability is exploitable with low privileges and local...

5.3CVSS4.9AI score0.00438EPSS
CVE
CVE
added 2020/04/13 12:4 p.m.211 views

CVE-2020-1759

CVE-2020-1759 affects Red Hat Ceph Storage 4 and Red Hat OpenShift Container Storage 4.2, where the secure mode of the messenger v2 protocol (msgr2) allows nonce reuse. This enables forging authentication tags and can lead to confidentiality and integrity problems in sessions when a nonce is reus...

6.8CVSS6.5AI score0.01373EPSS
CVE
CVE
added 2018/07/27 7:0 p.m.210 views

CVE-2017-2620

CVE-2017-2620 affects QEMU with Cirrus CLGD 54xx VGA emulator prior to 2.8, where cirrus_bitblt_cputovideo can trigger out-of-bounds access while copying VGA data. This could allow a privileged guest user to crash the QEMU process or potentially execute arbitrary host code with QEMU privileges. P...

9.9CVSS7.9AI score0.03559EPSS
CVE
CVE
added 2020/05/11 12:0 a.m.209 views

CVE-2020-10685

CVE-2020-10685 affects Ansible Engine versions 2.7.x before 2.7.17, 2.8.x before 2.8.11, 2.9.x before 2.9.7, and Ansible Tower up to 3.6.3, when using vault-decrypting modules (assemble, script, unarchive, win_copy, aws_s3, copy). A temporary directory is created in /tmp and left unencrypted; on ...

5.5CVSS5.8AI score0.00376EPSS
CVE
CVE
added 2017/10/19 5:0 p.m.205 views

CVE-2017-10379

CVE-2017-10379 concerns the MySQL Server client-side component of Oracle MySQL. Affected versions are 5.5.57 and earlier, 5.6.37 and earlier, and 5.7.19 and earlier. The vulnerability can be exploited by a low-privileged attacker with network access via multiple protocols, potentially leading to ...

6.5CVSS5.2AI score0.02298EPSS
CVE
CVE
added 2017/08/02 7:0 p.m.205 views

CVE-2017-10664

CVE-2017-10664 affects qemu-nbd in QEMU. The issue arises because SIGPIPE is not ignored, allowing remote attackers to trigger a denial of service (daemon crash) by disconnecting during a server-to-client reply. The vulnerability is referenced across multiple advisories and Nessus plugins (e.g., ...

7.5CVSS7.2AI score0.04028EPSS
CVE
CVE
added 2020/03/24 12:0 a.m.198 views

CVE-2020-10684

Ansible Engine vulnerable scope: versions 2.7.x before 2.7.17, 2.8.x before 2.8.11, and 2.9.x before 2.9.7 allow an attacker to alter ansible_facts when inject is enabled, potentially leading to privilege escalation or code injection. Connected advisories confirm the same underlying issue and pro...

7.9CVSS7.1AI score0.00345EPSS
CVE
CVE
added 2020/05/15 6:52 p.m.195 views

CVE-2020-1758

CVE-2020-1758 affects Keycloak versions before 10.0.0. The issue is that TLS hostname verification is not performed when Keycloak sends emails via an SMTP server, which can allow a man‑in‑the‑middle (MITM) attack. The connected sources consistently describe this flaw and its mitigation; there are...

5.9CVSS5.2AI score0.00905EPSS
CVE
CVE
added 2016/04/13 3:0 p.m.191 views

CVE-2015-8080

CVE-2015-8080 is an in Redis where the getnum function in lua_struct.c can overflow an integer if a Lua script processes a large number. Affects Redis 2.8.x before 2.8.24 and 3.0.x before 3.0.6. The described impact is memory corruption and application crash, with potential sandbox circumvention....

7.5CVSS8AI score0.05362EPSS
CVE
CVE
added 2019/11/01 6:38 p.m.189 views

CVE-2013-2255

OpenStack CVE-2013-2255 affects HTTPSConnections in Keystone (2013) and OpenStack Compute (2013.1), and possibly other OpenStack components. Root cause: server-side SSL certificate validation is not performed, allowing potential impersonation or man-in-the-middle scenarios where untrusted certifi...

5.9CVSS5.7AI score0.00962EPSS
CVE
CVE
added 2019/04/23 3:57 p.m.189 views

CVE-2019-0223

CVE-2019-0223 concerns Apache Qpid Proton (C library and bindings) versions 0.9–0.27.0. Under TLS with OpenSSL versions before 1.1.0, a peer could be connected anonymously even when peer cert verification is configured, enabling a potential undetected man-in-the-middle attack if TLS traffic is in...

7.4CVSS7AI score0.0615EPSS
CVE
CVE
added 2016/05/11 9:0 p.m.186 views

CVE-2016-3710

CVE-2016-3710 : A bounds-checking flaw in QEMU’s VGA module (VBE read/write via I/O ports) allows a privileged guest to modify banked video memory and execute arbitrary code on the host with QEMU process privileges. Root cause: out-of-bounds read/write in VGA bank access. Impact: potential host c...

8.8CVSS8.7AI score0.00923EPSS
CVE
CVE
added 2016/08/02 4:0 p.m.186 views

CVE-2016-5403

CVE-2016-5403 affects QEMU’s virtio path (virtqueue_pop in hw/virtio/virtio.c). A local guest OS administrator can cause a denial of service via unbounded memory allocation by submitting virtqueue requests without waiting for completion, potentially crashing the QEMU process. Public postings acro...

5.5CVSS5.9AI score0.0052EPSS
CVE
CVE
added 2015/08/31 10:0 a.m.184 views

CVE-2015-3214

CVE-2015-3214 affects QEMU prior to 2.3.1 (pit_ioport_read in i8254.c) and Linux kernel prior to 2.6.33. The flaw does not distinguish between read and write lengths, potentially allowing a privileged guest user (with PIT emulation enabled) to trigger an invalid index and cause arbitrary host cod...

6.9CVSS6.1AI score0.01594EPSS
CVE
CVE
added 2018/07/02 1:0 p.m.181 views

CVE-2018-10874

CVE-2018-10874 affects Ansible. The issue arises when inventory variables are loaded from the current working directory during ad-hoc commands, which attackers can control, enabling arbitrary code execution (local attacker could compromise the target via manipulated inventory vars). The NVD entry...

7.8CVSS7.8AI score0.00485EPSS
CVE
CVE
added 2018/03/05 2:0 p.m.179 views

CVE-2018-1000115

CVE-2018-1000115 – Memcached UDP amplification vulnerability. Memcached 1.5.5 contains an Insufficient Control of Network Message Volume (CWE-406) in UDP support, enabling a remote attacker to perform a denial-of-service via UDP traffic to port 11211 (amplification ~1:50,000). The issue is mitiga...

7.5CVSS7.4AI score0.8864EPSS
CVE
CVE
added 2019/09/25 10:59 p.m.178 views

CVE-2017-18635

CVE-2017-18635 describes an XSS in noVNC before 0.6.2 where a remote VNC server can inject arbitrary HTML into the noVNC page via status field messages (e.g., server name). Connected advisories confirm affected packages across multiple distros (Debian, Ubuntu, Mageia, Red Hat-related advisories) ...

6.1CVSS5.8AI score0.0481EPSS
CVE
CVE
added 2018/07/27 9:0 p.m.171 views

CVE-2016-9603

CVE-2016-9603 affects QEMU’s Cirrus CLGD 54xx VGA emulator, specifically the VNC display driver support prior to 2.9. A heap-based buffer overflow can occur when a VNC client updates the display after a guest VGA operation. A privileged guest user could crash the QEMU process or potentially execu...

9.9CVSS8AI score0.04448EPSS
CVE
CVE
added 2019/08/09 6:21 p.m.171 views

CVE-2019-14433

The CVE-2019-14433 issue affects OpenStack Nova (versions before 17.0.12, 18.x before 18.2.2, 19.x before 19.0.2). It allows authenticated API requests that fault to leak environment details in responses, potentially exposing sensitive configuration data (partial confidentiality impact). Red Hat ...

6.5CVSS6.1AI score0.01927EPSS
CVE
CVE
added 2018/04/24 4:0 p.m.170 views

CVE-2016-9587

CVE-2016-9587 affects Ansible up to versions 2.1.4 and 2.2.1. The issue is improper input validation in handling data from client systems, allowing an attacker who controls a managed client and can send facts back to the server to execute arbitrary code on the Ansible server with server privilege...

9.3CVSS8AI score0.1765EPSS
CVE
CVE
added 2015/08/12 2:0 p.m.167 views

CVE-2015-5165

CVE-2015-5165 affects the RTL8139 emulation in QEMU (C+ mode offload) used by Xen 4.5.x and earlier. A remote attacker could read heap memory in the QEMU process via unspecified vectors, potentially exposing host data. Public sources in connected docs document this as an information-leak flaw in ...

9.3CVSS6.5AI score0.13288EPSS
CVE
CVE
added 2018/07/02 6:0 p.m.165 views

CVE-2017-2615

The CVE-2017-2615 issue affects QEMU’s Cirrus CLGD 54xx VGA emulator support. The vulnerability is an out-of-bounds access during VGA data copying via bitblt in backward mode, which could allow a privileged guest user to crash the QEMU process and potentially execute arbitrary host code with QEMU...

9.1CVSS7.7AI score0.03648EPSS
CVE
CVE
added 2018/06/22 1:0 p.m.164 views

CVE-2017-7466

CVE-2017-7466 is a vulnerability in Ansible prior to version 2.3, where input validation of data returned by client systems could be exploited by a compromised client to execute arbitrary code on the Ansible server with the server’s privileges. Public sources in the provided documents reference R...

8.5CVSS8AI score0.03157EPSS
CVE
CVE
added 2019/11/14 12:0 a.m.156 views

CVE-2019-14818

The CVE-2019-14818 issue affects DPDK packages in multiple lines: 17.x.x before 17.11.8, 16.x.x before 16.11.10, 18.x.x before 18.11.4, and 19.x.x before 19.08.1. A malicious master or a container with access to a vhost_user socket can send crafted VRING_SET_NUM messages, causing a memory leak th...

7.5CVSS7.1AI score0.02815EPSS
CVE
CVE
added 2020/03/16 3:3 p.m.155 views

CVE-2020-1736

CVE-2020-1736 concerns Ansible Engine where moving a file with atomic_move cannot set the destination file mode. If the destination does not exist, the move can render the new file world-readable; if the file exists, permissions may be loosened before the move, potentially exposing sensitive data...

3.3CVSS3.6AI score0.00401EPSS
Total number of security vulnerabilities210