Home/Product/redhat enterprise linux
Product

redhat enterprise linux

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-42010
all versions
A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest-Shamir-Adleman - Pre-Shared Key) wrongfully matched usernames
7.1HIGH
 CVE-2026-34002
all versions
A flaw was found in the X.Org X server. This vulnerability, an out-of-bounds read, affects the XKB (X Keyboard Extension) modifier
6.1MEDIUM
 CVE-2026-34000
all versions
A flaw was found in the X.Org X server. This out-of-bounds read vulnerability in the XKB geometry processing, specifically within
6.1MEDIUM
 CVE-2026-3833
all versions
A flaw was found in gnutls. This vulnerability occurs because gnutls performs case-sensitive comparisons of nameConstraints labe
6.5MEDIUM
 CVE-2026-3832
all versions
A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted Online Certificat
3.7LOW
 CVE-2026-33845
all versions
A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leading to an integer und
7.5HIGH
 CVE-2026-6732
all versions
A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition (XSD)
6.5MEDIUM
 CVE-2026-2708
all versions
A request smuggling vulnerability exists in libsoup's HTTP/1 header parsing logic. The soup_message_headers_append_common() functi
3.7LOW
 CVE-2026-31431
all versions
In the Linux kernel, the following vulnerability has been resolved: crypto: algif_aead - Revert to operating out-of-place This m
7.8HIGH
 CVE-2026-6384
all versions
A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsImage function allows
7.3HIGH
 CVE-2026-40919
all versions
A flaw was found in GIMP. This vulnerability, a buffer overflow in the file-seattle-filmworks plugin, can be exploited when a us
6.1MEDIUM
 CVE-2026-40918
all versions
A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can lead to a denial of service (DoS
5.5MEDIUM
 CVE-2026-40917
all versions
A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the icns_slurp() function, occurs when processing speci
5.0MEDIUM
 CVE-2026-40916
all versions
A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decoding path allows a local user t
5.0MEDIUM
 CVE-2026-40915
all versions
A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in the FITS image loader by providing
5.5MEDIUM
 CVE-2026-4878
all versions
A flaw was found in libcap. A local unprivileged user can exploit a Time-of-check-to-time-of-use (TOCTOU) race condition in the `c
6.7MEDIUM
 CVE-2026-5745
all versions
A flaw was found in libarchive. A NULL pointer dereference vulnerability exists in the ACL parsing logic, specifically within the
5.5MEDIUM
 CVE-2026-5704
all versions
A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidden fil
5.0MEDIUM
 CVE-2026-5673
all versions
A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI (Audio Video Interleave) par
5.6MEDIUM
 CVE-2026-2625
all versions
A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability by providing a specially crafted Red Hat Package
4.0MEDIUM
 CVE-2026-35092
all versions
A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity validation allows a remote, unau
7.5HIGH
 CVE-2026-35091
all versions
A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vulnerability in the Corosync mem
8.2HIGH
 CVE-2026-5201
all versions
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to i
7.5HIGH
 CVE-2026-5165
all versions
A flaw was found in virtio-win, specifically within the VirtIO Block (BLK) device. When the device undergoes a reset, it fails to
6.7MEDIUM
 CVE-2026-5164
all versions
A flaw was found in virtio-win. The RhelDoUnMap() function does not properly validate the number of descriptors provided by a us
6.7MEDIUM
 CVE-2026-5121
all versions
A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation
7.5HIGH
 CVE-2026-5119
all versions
A flaw was found in libsoup. When establishing HTTPS tunnels through a configured HTTP proxy, sensitive session cookies are transm
5.9MEDIUM
 CVE-2026-28369
all versions
A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, i
8.7HIGH
 CVE-2026-28368
all versions
A flaw was found in Undertow. This vulnerability allows a remote attacker to construct specially crafted requests where header nam
8.7HIGH
 CVE-2026-4948
all versions
A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus (Desk
5.5MEDIUM
 CVE-2026-2272
all versions
A flaw was found in GIMP. An integer overflow vulnerability exists when processing ICO image files, specifically in the `ico_read_
4.3MEDIUM
 CVE-2026-2239
all versions
A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the fread_pascal_string function when processing a speciall
2.8LOW
 CVE-2026-2100
all versions
A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote to
5.3MEDIUM
 CVE-2026-0968
all versions
A flaw was found in libssh in which a malicious SFTP (SSH File Transfer Protocol) server can exploit this by sending a malformed '
3.1LOW
 CVE-2026-0967
all versions
A flaw was found in libssh. A remote attacker, by controlling client configuration files or known_hosts files, could craft specifi
5.5MEDIUM
 CVE-2026-0966
all versions
A flaw was found in libssh. The API function ssh_get_hexa() is vulnerable to a denial of service when processing zero-length inp
8.2HIGH
 CVE-2026-0965
all versions
A flaw was found in libssh where it can attempt to open arbitrary files during configuration parsing. A local attacker can exploit
3.3LOW
 CVE-2026-0964
all versions
A malicious SCP server can send unexpected paths that could make the client application override local files outside of working di
6.3MEDIUM
 CVE-2026-2436
all versions
A flaw was found in libsoup's SoupServer. A remote attacker could exploit a use-after-free vulnerability where the `soup_server_di
6.5MEDIUM
 CVE-2026-4897
all versions
A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the `polkit-
5.5MEDIUM
 CVE-2026-4775
all versions
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8
7.8HIGH
 CVE-2026-3260
all versions
A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipa
5.9MEDIUM
 CVE-2026-1940
all versions
An incomplete fix for CVE-2024-47778 allows an out-of-bounds read in gst_wavparse_adtl_chunk() function. The patch added a size va
5.1MEDIUM
 CVE-2026-4647
all versions
A flaw was found in the GNU Binutils BFD library, a widely used component for handling binary files such as object files and execu
6.1MEDIUM
 CVE-2026-4426
all versions
A flaw was found in libarchive. An Undefined Behavior vulnerability exists in the zisofs decompression logic, caused by improper v
6.5MEDIUM
 CVE-2026-4424
all versions
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to impro
7.5HIGH
 CVE-2026-4271
all versions
A flaw was found in libsoup, a library for handling HTTP requests. This vulnerability, known as a Use-After-Free, occurs in the HT
5.3MEDIUM
 CVE-2026-3634
all versions
A flaw was found in libsoup. An attacker controlling the value used to set the Content-Type header can inject a Carriage Return Li
3.9LOW
 CVE-2026-3633
all versions
A flaw was found in libsoup. A remote attacker, by controlling the method parameter of the soup_message_new() function, could in
3.9LOW
 CVE-2026-3632
all versions
A flaw was found in libsoup, a library used by applications to send network requests. This vulnerability occurs because libsoup do
3.9LOW
 CVE-2026-3442
all versions
A flaw was found in GNU Binutils. This vulnerability, a heap-based buffer overflow, specifically an out-of-bounds read, exists in
6.1MEDIUM
 CVE-2026-3441
all versions
A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd lin
6.1MEDIUM
 CVE-2026-3099
all versions
A flaw was found in Libsoup. The server-side digest authentication implementation in the SoupAuthDomainDigest class does not prope
5.8MEDIUM
 CVE-2025-12801
all versions
A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to
6.5MEDIUM
 CVE-2025-9572
all versions
n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Un
5.0MEDIUM
 CVE-2026-26104
all versions
A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without
5.5MEDIUM
 CVE-2026-26103
all versions
A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers
7.1HIGH
 CVE-2026-2443
all versions
A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processing specially crafted HTTP Range
5.3MEDIUM
 CVE-2026-1709
all versions
A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (T
9.4CRITICAL
 CVE-2026-1801
all versions
A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-complian
5.3MEDIUM
 CVE-2026-1539
all versions
A flaw was found in the libsoup HTTP library that can cause proxy authentication credentials to be sent to unintended destinations
5.8MEDIUM
 CVE-2026-1536
all versions
A flaw was found in libsoup. An attacker who can control the input for the Content-Disposition header can inject CRLF (Carriage Re
5.8MEDIUM
 CVE-2026-1467
all versions
A flaw was found in libsoup, an HTTP client library. This vulnerability, known as CRLF (Carriage Return Line Feed) Injection, occu
5.8MEDIUM
 CVE-2025-14512
all versions
A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service (DoS) via an integer overflow in
6.5MEDIUM
 CVE-2025-14087
all versions
A flaw was found in GLib (Gnome Lib). This vulnerability allows a remote attacker to cause heap corruption, leading to a denial of
5.6MEDIUM
 CVE-2025-9784
all versions
A flaw was found in Undertow where malformed client requests can trigger server-side stream resets without triggering abuse counte
7.5HIGH
 CVE-2025-8283
all versions
A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domai
3.7LOW
 CVE-2025-7519
all versions
A flaw was found in polkit. When processing an XML policy with 32 or more nested elements in depth, an out-of-bounds write can be
6.7MEDIUM
 CVE-2025-7424
all versions
A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead t
7.5HIGH
 CVE-2025-32990
all versions
A heap-buffer-overflow (off-by-one) flaw was found in the GnuTLS software in the template parsing logic within the certtool utilit
6.5MEDIUM
 CVE-2025-32989
all versions
A heap-buffer-overread vulnerability was found in GnuTLS in how it handles the Certificate Transparency (CT) Signed Certificate Ti
5.3MEDIUM
 CVE-2025-32988
all versions
A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling in the export logic o
6.5MEDIUM
 CVE-2025-5351
all versions
A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting c
6.5MEDIUM
 CVE-2025-5372
all versions
A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible
5.0MEDIUM
 CVE-2025-32463
all versions
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used
9.3CRITICAL
 CVE-2025-5318
all versions
A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftp_handle fun
8.1HIGH
 CVE-2025-6170
all versions
A flaw was found in the interactive shell of the xmllint command-line tool, used for parsing XML files. When a user inputs an over
2.5LOW
 CVE-2025-6021
all versions
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base
7.5HIGH
 CVE-2025-5918
all versions
A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdtar,
3.9LOW
 CVE-2025-5917
all versions
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling pre
2.8LOW
 CVE-2025-5916
all versions
A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when p
3.9LOW
 CVE-2025-5915
all versions
A vulnerability has been identified in the libarchive library. This flaw can lead to a heap buffer over-read due to the size of a
6.6MEDIUM
 CVE-2025-5914
all versions
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() functio
7.8HIGH
 CVE-2025-47711
all versions
There's a flaw in the nbdkit server when handling responses from its plugins regarding the status of data blocks. If a client make
6.5MEDIUM
 CVE-2025-4598
all versions
A vulnerability was found in systemd-coredump. This flaw allows an attacker to force a SUID process to crash and replace it with a
4.7MEDIUM
 CVE-2025-4478
all versions
A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation
6.5MEDIUM
 CVE-2025-3891
all versions
A flaw was found in the mod_auth_openidc module for Apache httpd. This flaw allows a remote, unauthenticated attacker to trigger a
7.5HIGH
 CVE-2025-46400
all versions
In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulati
5.5MEDIUM
 CVE-2025-46399
all versions
A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via genge_itp_spline function.
5.5MEDIUM
 CVE-2025-46398
all versions
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_ob
5.5MEDIUM
 CVE-2025-46397
all versions
A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline functio
7.8HIGH
 CVE-2025-3155
all versions
A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit
7.4HIGH
 CVE-2025-2784
all versions
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white
7.0HIGH
 CVE-2025-0678
all versions
A flaw was found in grub2. When reading data from a squash4 filesystem, grub's squash4 fs module uses user-controlled parameters f
7.8HIGH
 CVE-2024-45782
all versions
A flaw was found in the HFS filesystem. When reading an HFS volume's name at grub_fs_mount(), the HFS filesystem driver performs a
7.8HIGH
 CVE-2024-45778
all versions
A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing
4.1MEDIUM
 CVE-2025-26601
all versions
A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the change mask are evaluated one aft
7.8HIGH
 CVE-2025-26600
all versions
A use-after-free flaw was found in X.Org and Xwayland. When a device is removed while still frozen, the events queued for that dev
7.8HIGH
 CVE-2025-26599
all versions
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect() may fail if it cannot
7.8HIGH
 CVE-2025-26598
all versions
An out-of-bounds write flaw was found in X.Org and Xwayland. The function GetBarrierDevice() searches for the pointer device based
7.8HIGH
 CVE-2025-26597
all versions
A buffer overflow flaw was found in X.Org and Xwayland. If XkbChangeTypesOfKey() is called with a 0 group, it will resize the key
7.8HIGH
 CVE-2025-26596
all versions
A heap overflow flaw was found in X.Org and Xwayland. The computation of the length in XkbSizeKeySyms() differs from what is writt
7.8HIGH
 CVE-2025-26595
all versions
A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a fixed-sized buffer on the stack
7.8HIGH
 CVE-2025-26594
all versions
A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a cl
7.8HIGH
 CVE-2024-45777
all versions
A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo file in grub_gettext_getstr_from_
6.7MEDIUM
 CVE-2025-26465
all versions
A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed
6.8MEDIUM
 CVE-2024-12084
all versions
A heap-based buffer overflow flaw was found in the rsync daemon. This issue is due to improper handling of attacker-controlled che
9.8CRITICAL
 CVE-2024-12088
all versions
A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link dest
6.5MEDIUM
 CVE-2024-12087
all versions
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled
6.5MEDIUM
 CVE-2024-12086
all versions
A flaw was found in rsync. It could allow a server to enumerate the contents of an arbitrary file from the client's machine. This
6.1MEDIUM
 CVE-2024-12085
all versions
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate
7.5HIGH
 CVE-2024-49395
all versions
In mutt and neomutt, PGP encryption does not use the --hidden-recipient mode which may leak the Bcc email header field by inferrin
5.3MEDIUM
 CVE-2024-49394
all versions
In mutt and neomutt the In-Reply-To email header field is not protected by cryptographic signing which allows an attacker to reuse
5.3MEDIUM
 CVE-2024-49393
all versions
In neomutt and mutt, the To and Cc email headers are not validated by cryptographic signing which allows an attacker that intercep
6.5MEDIUM
 CVE-2024-50074
all versions
In the Linux kernel, the following vulnerability has been resolved: parport: Proper fix for array out-of-bounds access The recen
7.8HIGH
 CVE-2024-9676
all versions
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can c
6.5MEDIUM
 CVE-2024-9675
all versions
A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our
7.8HIGH
 CVE-2024-9341
all versions
A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to
5.4MEDIUM
 CVE-2024-8354
all versions
A flaw was found in QEMU. An assertion failure was present in the usb_ep_get() function in hw/net/core.c when trying to get the US
5.5MEDIUM
 CVE-2024-8443
all versions
A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with mali
2.9LOW
 CVE-2024-45620
all versions
A vulnerability was found in the pkcs15-init tool in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would
3.9LOW
 CVE-2024-45619
all versions
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device
4.3MEDIUM
 CVE-2024-45618
all versions
A vulnerability was found in pkcs15-init in OpenSC. An attacker could use a crafted USB Device or Smart Card, which would present
3.9LOW
 CVE-2024-45617
all versions
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device
3.9LOW
 CVE-2024-45616
all versions
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device
3.9LOW
 CVE-2024-45615
all versions
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. The problem is missing initialization of
3.9LOW
 CVE-2024-44070
all versions
An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining str
7.5HIGH
 CVE-2024-7006
all versions
A null pointer dereference flaw was found in Libtiff via tif_dirinfo.c. This issue may allow an attacker to trigger memory alloc
7.5HIGH
 CVE-2024-3056
all versions
A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to shar
7.7HIGH
 CVE-2024-6237
all versions
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while se
6.5MEDIUM
 CVE-2024-6505
all versions
A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature on the virtio-net network card, the indirections_
6.8MEDIUM
 CVE-2024-6387
all versions
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to
8.1HIGH
 CVE-2024-6239
all versions
A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using ce
7.5HIGH
 CVE-2024-5742
all versions
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is k
6.7MEDIUM
 CVE-2024-3183
all versions
A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is d
8.1HIGH
 CVE-2024-3049
all versions
A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allo
5.9MEDIUM
 CVE-2023-3758
all versions
A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to
7.1HIGH
 CVE-2022-24809
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only
6.5MEDIUM
 CVE-2022-24808
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write
6.5MEDIUM
 CVE-2022-24807
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a S
6.5MEDIUM
 CVE-2022-24806
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write
6.5MEDIUM
 CVE-2022-24805
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in t
6.5MEDIUM
 CVE-2024-3567
all versions
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function in hw/net/net_tx_pkt.c when tryi
5.5MEDIUM
 CVE-2024-2496
all versions
A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when det
5.0MEDIUM
 CVE-2024-2002
all versions
A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to dealloc(free) an allo
7.5HIGH
 CVE-2023-7250
all versions
A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning clien
5.3MEDIUM
 CVE-2023-6917
all versions
A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized b
6.0MEDIUM
 CVE-2023-52160
all versions
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant mu
6.5MEDIUM
 CVE-2024-1488
all versions
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif
8.0HIGH
 CVE-2023-50868
all versions
The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to c
7.5HIGH
 CVE-2023-50387
all versions
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a den
7.5HIGH
 CVE-2024-1454
all versions
The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process usin
3.4LOW
 CVE-2023-6681
all versions
A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible passwor
5.3MEDIUM
 CVE-2024-1062
all versions
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars
5.5MEDIUM
 CVE-2024-1151
all versions
A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of
5.5MEDIUM
 CVE-2024-0229
all versions
An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab
7.8HIGH
 CVE-2023-6536
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2023-6535
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2023-6356
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2024-1048
all versions
A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a tem
3.3LOW
 CVE-2023-50782
all versions
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS se
7.5HIGH
 CVE-2023-50781
all versions
A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key
7.5HIGH
 CVE-2023-7216
all versions
A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated attacker to trick a
5.3MEDIUM
 CVE-2023-6240
all versions
A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a
6.5MEDIUM
 CVE-2023-5992
all versions
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This iss
5.6MEDIUM
 CVE-2024-0914
all versions
A timing side-channel vulnerability has been discovered in the opencryptoki package while processing RSA PKCS#1 v1.5 padded cipher
5.9MEDIUM
 CVE-2024-0564
all versions
A flaw was found in the Linux kernel's memory deduplication mechanism. The max page sharing of Kernel Samepage Merging (KSM), adde
5.3MEDIUM
 CVE-2023-40551
all versions
A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sens
5.1MEDIUM
 CVE-2023-40550
all versions
An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data
5.5MEDIUM
 CVE-2023-40549
all versions
An out-of-bounds read flaw was found in Shim due to the lack of proper boundary verification during the load of a PE binary. This
6.2MEDIUM
 CVE-2023-40546
all versions
A flaw was found in Shim when an error happened while creating a new ESL variable. If Shim fails to create the new variable, it tr
6.2MEDIUM
 CVE-2024-0841
all versions
A null pointer dereference flaw was found in the hugetlbfs_fill_super function in the Linux kernel hugetlbfs (HugeTLB pages) funct
6.6MEDIUM
 CVE-2023-52356
all versions
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt
7.5HIGH
 CVE-2023-52355
all versions
An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64(
7.5HIGH
 CVE-2023-40547
all versions
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an H
8.3HIGH
 CVE-2024-0775
all versions
A use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 in the Linux kernel. This flaw allows a local use
6.7MEDIUM
 CVE-2023-6531
all versions
A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage collector's deletion of SKB races wi
7.0HIGH
 CVE-2024-0607
all versions
A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nft_byteorder_eval() function, where the code
6.6MEDIUM
 CVE-2024-0409
all versions
A flaw was found in the X.Org server. The cursor code in both Xephyr and Xwayland uses the wrong type of private at creation. It u
7.8HIGH
 CVE-2024-0408
all versions
A flaw was found in the X.Org server. The GLX PBuffer code does not call the XACE hook when creating the buffer, leaving it unlabe
5.5MEDIUM
 CVE-2024-0646
all versions
An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a
7.0HIGH
 CVE-2024-0641
all versions
A denial of service vulnerability was found in tipc_crypto_key_revoke in net/tipc/crypto.c in the Linux kernel’s TIPC subsystem.
5.5MEDIUM
 CVE-2024-0639
all versions
A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’
5.5MEDIUM
 CVE-2024-0232
all versions
A heap use-after-free issue has been identified in SQLite in the jsonParseAddNodeArray() function in sqlite3.c. This flaw allows a
4.7MEDIUM
 CVE-2024-0553
all versions
A vulnerability was found in GnuTLS. The response times to malformed ciphertexts in RSA-PSK ClientKeyExchange differ from the resp
7.5HIGH
 CVE-2024-0562
all versions
A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdi_unregister is called to stop further write-back a
7.8HIGH
 CVE-2023-4001
all versions
An authentication bypass flaw was found in GRUB due to the way that GRUB uses the UUID of a device to search for the configuration
6.8MEDIUM
 CVE-2023-6915
all versions
A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using
6.2MEDIUM
 CVE-2024-23301
all versions
Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to
5.5MEDIUM
 CVE-2023-6683
all versions
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. The qemu_clipboard_request() function ca
6.5MEDIUM
 CVE-2024-0443
all versions
A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to a cgroup blkio memory leakage
5.5MEDIUM
 CVE-2023-5455
all versions
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows
6.5MEDIUM
 CVE-2021-3600
all versions
It was discovered that the eBPF implementation in the Linux kernel did not properly track bounds information for 32 bit registers
7.8HIGH
 CVE-2024-0217
all versions
A use-after-free flaw was found in PackageKitd. In some conditions, the order of cleanup mechanics for a transaction could be impa
3.3LOW
 CVE-2023-6004
all versions
A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked hostname syntax on the
4.8MEDIUM
 CVE-2023-7192
all versions
A memory leak problem was found in ctnetlink_create_conntrack in net/netfilter/nf_conntrack_netlink.c in the Linux Kernel. This is
5.5MEDIUM
 CVE-2023-6693
all versions
A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flu
4.9MEDIUM
 CVE-2023-4641
all versions
A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on t
4.7MEDIUM
 CVE-2023-51767
all versions
OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the i
7.0HIGH
 CVE-2023-51765
all versions
sendmail through 8.17.2 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation techniq
5.3MEDIUM
 CVE-2023-51764
all versions
Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_disc
5.3MEDIUM
 CVE-2023-6546
all versions
A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSM
7.0HIGH
 CVE-2023-6918
all versions
A flaw was found in the libssh implements abstract layer for message digest (MD) operations implemented by different supported cry
3.7LOW
 CVE-2023-48795
all versions
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attacker
5.9MEDIUM
 CVE-2023-47038
all versions
A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl,
7.0HIGH
 CVE-2023-6710
all versions
A flaw was found in the mod_proxy_cluster in the Apache server. This issue may allow a malicious user to add a script in the 'alia
5.4MEDIUM
 CVE-2023-6679
all versions
A null pointer dereference vulnerability was found in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c in the Digital Phas
5.5MEDIUM
 CVE-2023-5870
all versions
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replica
2.2LOW
 CVE-2023-5869
all versions
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks
8.8HIGH
 CVE-2023-5868
all versions
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting c
4.3MEDIUM
 CVE-2023-6622
all versions
A null pointer dereference vulnerability was found in nft_dynset_init() in net/netfilter/nft_dynset.c in nf_tables in the Linux ke
5.5MEDIUM
 CVE-2023-6610
all versions
An out-of-bounds read vulnerability was found in smb2_dump_detail in fs/smb/client/smb2ops.c in the Linux Kernel. This issue could
7.1HIGH
 CVE-2023-6606
all versions
An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allo
7.1HIGH
 CVE-2023-5871
all versions
A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for accessing Block Devices such as hard dis
5.3MEDIUM
 CVE-2023-6176
all versions
A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This
4.7MEDIUM
 CVE-2023-6121
all versions
An out-of-bounds read vulnerability was found in the NVMe-oF/TCP subsystem in the Linux kernel. This issue may allow a remote atta
4.3MEDIUM
 CVE-2023-5547
all versions
The course upload preview contained an XSS risk for users uploading unsafe data.
3.3LOW
 CVE-2023-5546
all versions
ID numbers displayed in the quiz grading report required additional sanitizing to prevent a stored XSS risk.
4.3MEDIUM
 CVE-2023-5544
all versions
Wiki comments required additional sanitizing and access restrictions to prevent a stored XSS risk and potential IDOR risk.
6.5MEDIUM
 CVE-2023-39198
all versions
A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj return
7.5HIGH
 CVE-2023-4535
all versions
An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. E
4.5MEDIUM
 CVE-2023-40661
all versions
Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs1
5.4MEDIUM
 CVE-2023-40660
all versions
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can p
6.6MEDIUM
 CVE-2023-5090
all versions
A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct access to host x2apic msrs when t
6.0MEDIUM
 CVE-2023-42669
all versions
A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack ele
6.5MEDIUM
 CVE-2023-5088
all versions
A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead
6.4MEDIUM
 CVE-2023-3961
all versions
A path traversal vulnerability was identified in Samba when processing client pipe names connecting to Unix domain sockets within
9.1CRITICAL
 CVE-2023-1476
all versions
A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs d
7.0HIGH
 CVE-2023-5824
all versions
A flaw was found in Squid. The limits applied for validation of HTTP response headers are applied before caching. However, Squid m
7.5HIGH
 CVE-2023-4091
all versions
A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when
6.5MEDIUM
 CVE-2023-46848
all versions
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages
8.6HIGH
 CVE-2023-46847
all versions
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of a
8.6HIGH
 CVE-2023-46846
all versions
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Res
9.3CRITICAL
 CVE-2023-38473
all versions
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_alternative_host_name() function.
6.2MEDIUM
 CVE-2022-4900
all versions
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap bu
6.2MEDIUM
 CVE-2023-38472
all versions
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_rdata_parse() function.
6.2MEDIUM
 CVE-2023-38471
all versions
A vulnerability was found in Avahi. A reachable assertion exists in the dbus_set_host_name function.
6.2MEDIUM
 CVE-2023-38470
all versions
A vulnerability was found in Avahi. A reachable assertion exists in the avahi_escape_label() function.
6.2MEDIUM
 CVE-2023-38469
all versions
A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record.
6.2MEDIUM
 CVE-2023-3164
all versions
A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:
5.5MEDIUM
 CVE-2023-1192
all versions
A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to
6.5MEDIUM
 CVE-2023-5178
all versions
A use-after-free vulnerability was found in drivers/nvme/target/tcp.c in nvmet_tcp_free_crypto` due to a logical bug in the NVMe
8.8HIGH
 CVE-2023-3972
all versions
A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of
7.8HIGH
 CVE-2023-5574
all versions
A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (
7.0HIGH
 CVE-2023-5380
all versions
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a
4.7MEDIUM
 CVE-2023-5367
all versions
A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset
7.8HIGH
 CVE-2023-4693
all versions
An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to pres
5.3MEDIUM
 CVE-2023-4692
all versions
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially c
7.5HIGH
 CVE-2023-5633
all versions
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m
7.8HIGH
 CVE-2023-5557
all versions
A flaw was found in the tracker-miners package. A weakness in the sandbox allows a maliciously-crafted file to execute code outsid
7.5HIGH
 CVE-2023-43789
all versions
A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-b
5.5MEDIUM
 CVE-2023-44487
all versions
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams q
7.5HIGH
 CVE-2023-43788
all versions
A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allow
5.5MEDIUM
 CVE-2023-43787
all versions
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user t
7.8HIGH
 CVE-2023-43786
all versions
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to co
5.5MEDIUM
 CVE-2023-43785
all versions
A vulnerability was found in libX11 due to a boundary condition within the _XkbReadKeySyms() function. This flaw allows a local us
6.5MEDIUM
 CVE-2023-39194
all versions
A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which
3.2LOW
 CVE-2023-39193
all versions
A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This fla
6.1MEDIUM
 CVE-2023-39192
all versions
A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 struc
6.7MEDIUM
 CVE-2023-39189
all versions
A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnl_osf_add_callback function did not validate the user mode
5.1MEDIUM
 CVE-2023-42755
all versions
A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond t
6.5MEDIUM
 CVE-2023-42754
all versions
A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated wit
5.5MEDIUM
 CVE-2023-41175
all versions
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers
6.5MEDIUM
 CVE-2023-40745
all versions
LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) o
6.5MEDIUM
 CVE-2023-3576
all versions
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowin
5.5MEDIUM
 CVE-2023-39191
all versions
An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper va
8.2HIGH
 CVE-2022-4132
all versions
A flaw was found in JSS. A memory leak in JSS requires non-standard configuration but is a low-effort DoS vector if configured tha
5.9MEDIUM
 CVE-2023-4911
all versions
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia
7.8HIGH
 CVE-2023-4732
all versions
A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a lo
4.7MEDIUM
 CVE-2023-44488
all versions
VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding.
7.5HIGH
 CVE-2023-5217
all versions
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacke
8.8HIGH
 CVE-2023-5215
all versions
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsign
5.3MEDIUM
 CVE-2023-42756
all versions
A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lea
4.4MEDIUM
 CVE-2023-5157
all versions
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a deni
7.5HIGH
 CVE-2023-42753
all versions
An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalcu
7.0HIGH
 CVE-2023-4156
all versions
A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to rea
4.4MEDIUM
 CVE-2023-5156
all versions
A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result
7.5HIGH
 CVE-2023-4806
all versions
A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been free
5.9MEDIUM
 CVE-2023-4527
all versions
A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured
6.5MEDIUM
 CVE-2023-4155
all versions
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with mu
5.3MEDIUM
 CVE-2023-3301
all versions
A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before th
5.6MEDIUM
 CVE-2023-3255
all versions
A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an in
6.5MEDIUM
 CVE-2023-2680
all versions
This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat En
7.5HIGH
 CVE-2023-4813
all versions
A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resultin
5.9MEDIUM
 CVE-2023-4569
all versions
A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow
5.5MEDIUM
 CVE-2023-38201
all versions
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration.
6.5MEDIUM
 CVE-2023-4042
all versions
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it wa
5.5MEDIUM
 CVE-2023-3899
all versions
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bu
7.8HIGH
 CVE-2023-4459
all versions
A NULL pointer dereference flaw was found in vmxnet3_rq_cleanup in drivers/net/vmxnet3/vmxnet3_drv.c in the networking sub-compone
5.5MEDIUM
 CVE-2023-4387
all versions
A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC d
7.1HIGH
 CVE-2023-39418
all versions
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security polic
3.1LOW
 CVE-2023-39417
all versions
IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:.
7.5HIGH
 CVE-2022-40982
all versions
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R
6.5MEDIUM
 CVE-2023-4273
all versions
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstr
6.0MEDIUM
 CVE-2023-4194
all versions
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and ga
5.5MEDIUM
 CVE-2023-4147
all versions
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This f
7.8HIGH
 CVE-2023-4133
all versions
A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detachin
5.5MEDIUM
 CVE-2023-4132
all versions
A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initializati
5.5MEDIUM
 CVE-2023-38559
all versions
A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local atta
5.5MEDIUM
 CVE-2023-4010
all versions
A flaw was found in the USB Host Controller Driver framework in the Linux kernel. The usb_giveback_urb function has a logic loopho
4.6MEDIUM
 CVE-2023-4004
all versions
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the
7.8HIGH
 CVE-2023-3773
all versions
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious
5.5MEDIUM
 CVE-2023-3772
all versions
A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious
5.5MEDIUM
 CVE-2023-3812
all versions
An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates
7.8HIGH
 CVE-2023-3750
all versions
A flaw was found in libvirt. The virStoragePoolObjListSearch function does not return a locked pool as expected, resulting in a ra
6.5MEDIUM
 CVE-2023-3640
all versions
A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where
7.0HIGH
 CVE-2023-3567
all versions
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow a
7.1HIGH
 CVE-2023-3019
all versions
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allo
6.0MEDIUM
 CVE-2023-38200
all versions
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against
7.5HIGH
 CVE-2023-33952
all versions
A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue o
6.7MEDIUM
 CVE-2023-33951
all versions
A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM obje
6.7MEDIUM
 CVE-2023-3347
all versions
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured
5.9MEDIUM
 CVE-2023-34968
all versions
A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute pa
5.3MEDIUM
 CVE-2023-34967
all versions
A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, o
5.3MEDIUM
 CVE-2023-34966
all versions
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets se
7.5HIGH
 CVE-2022-2127
all versions
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When perform
5.9MEDIUM
 CVE-2023-38253
all versions
An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause
4.7MEDIUM
 CVE-2023-38252
all versions
An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may allow an attacker to cause a den
4.7MEDIUM
 CVE-2023-3618
all versions
A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3En
6.5MEDIUM
 CVE-2023-3354
all versions
A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number
7.5HIGH
 CVE-2023-3269
all versions
A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtua
7.8HIGH
 CVE-2023-1672
all versions
A race condition exists in the Tang server functionality for key generation and key rotation. This flaw results in a small time wi
5.3MEDIUM
 CVE-2023-34432
all versions
A heap buffer overflow vulnerability was found in sox, in the lsx_readbuf function at sox/src/formats_i.c:98:16. This flaw can lea
7.8HIGH
 CVE-2023-34318
all versions
A heap buffer overflow vulnerability was found in sox, in the startread function at sox/src/hcom.c:160:41. This flaw can lead to a
7.8HIGH
 CVE-2023-32627
all versions
A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. This flaw can lea
6.2MEDIUM
 CVE-2023-26590
all versions
A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. This flaw
6.2MEDIUM
 CVE-2023-1183
all versions
A flaw was found in the Libreoffice package. An attacker can craft an odb containing a "database/script" file with a SCRIPT comman
5.0MEDIUM
 CVE-2023-1206
all versions
A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a
5.7MEDIUM
 CVE-2023-3138
all versions
A vulnerability was found in libX11. The security flaw occurs because the functions in src/InitExt.c in libX11 do not check that t
7.5HIGH
 CVE-2023-3212
all versions
A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems whe
4.4MEDIUM
 CVE-2023-32373
all versions
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura
8.8HIGH
 CVE-2023-3161
all versions
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font-width and font-height greater than 32
5.5MEDIUM
 CVE-2023-2455
all versions
Row security policies disregard user ID changes after inlining; PostgreSQL could permit incorrect policies to be applied in certai
5.4MEDIUM
 CVE-2023-2454
all versions
schema_element defeats protective search_path changes; It was found that certain database calls in PostgreSQL could permit an auth
7.2HIGH
 CVE-2023-2603
all versions
A vulnerability was found in libcap. This issue occurs in the _libcap_strdup() function and can lead to an integer overflow if the
7.8HIGH
 CVE-2023-2602
all versions
A vulnerability was found in the pthread_create() function in libcap. This issue may allow a malicious actor to use cause __real_p
3.3LOW
 CVE-2023-2977
all versions
A vulnerbility was found in OpenSC. This security flaw cause a buffer overrun vulnerability in pkcs15 cardos_have_verifyrc_package
7.1HIGH
 CVE-2023-34153
all versions
A vulnerability was found in ImageMagick. This security flaw causes a shell command injection vulnerability via video:vsync or vid
7.8HIGH
 CVE-2023-34152
all versions
A vulnerability was found in ImageMagick. This security flaw cause a remote code execution vulnerability in OpenBlob with --enable
9.8CRITICAL
 CVE-2023-34151
all versions
A vulnerability was found in ImageMagick. This security flaw ouccers as an undefined behaviors of casting double to size_t in svg,
5.5MEDIUM
 CVE-2023-2953
all versions
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
7.5HIGH
 CVE-2023-2283
all versions
A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in the`pki_verify_dat
6.5MEDIUM
 CVE-2023-1981
all versions
A vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus call, causing the avahi daemo
5.5MEDIUM
 CVE-2023-1667
all versions
A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated cli
6.5MEDIUM
 CVE-2023-33203
all versions
The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a
6.4MEDIUM
 CVE-2023-2295
all versions
A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received wi
7.5HIGH
 CVE-2023-2731
all versions
A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a loca
5.5MEDIUM
 CVE-2023-2491
all versions
A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" functio
7.8HIGH
 CVE-2023-2203
all versions
A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This fla
8.8HIGH
 CVE-2023-2700
all versions
A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities th
5.5MEDIUM
 CVE-2023-1729
all versions
A flaw was found in LibRaw. A heap-buffer-overflow in raw2image_ex() caused by a maliciously crafted file may lead to an applicati
6.5MEDIUM
 CVE-2023-32573
all versions
In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initiali
6.5MEDIUM
 CVE-2023-2156
all versions
A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from
7.5HIGH
 CVE-2023-2513
all versions
A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for exte
6.7MEDIUM
 CVE-2023-32233
all versions
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform
7.8HIGH
 CVE-2023-30549
all versions
Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through version
7.1HIGH
 CVE-2023-2019
all versions
A flaw was found in the Linux kernel's netdevsim device driver, within the scheduling of events. This issue results from the impro
4.4MEDIUM
 CVE-2023-2194
all versions
An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data-block[0]" vari
6.7MEDIUM
 CVE-2023-28328
all versions
A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The mess
5.5MEDIUM
 CVE-2023-28327
all versions
A NULL pointer dereference flaw was found in the UNIX protocol in net/unix/diag.c In unix_diag_get_exact in the Linux Kernel. The
5.5MEDIUM
 CVE-2023-1652
all versions
A use-after-free flaw was found in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue
7.1HIGH
 CVE-2022-3787
all versions
A vulnerability was found in the device-mapper-multipath. The device-mapper-multipath allows local users to obtain root access, ex
7.8HIGH
 CVE-2023-0664
all versions
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest A
7.8HIGH
 CVE-2023-1380
all versions
A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c i
7.1HIGH
 CVE-2023-1073
all versions
A memory corruption flaw was found in the Linux kernel’s human interface device (HID) subsystem in how a user inserts a maliciou
6.6MEDIUM
 CVE-2023-0778
all versions
A Time-of-check Time-of-use (TOCTOU) flaw was found in podman. This issue may allow a malicious user to replace a normal file in a
6.8MEDIUM
 CVE-2023-0494
all versions
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by
7.8HIGH
 CVE-2021-3923
all versions
A flaw was found in the Linux kernel's implementation of RDMA over infiniband. An attacker with a privileged local account can lea
2.3LOW
 CVE-2023-1513
all versions
A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions o
3.3LOW
 CVE-2023-1289
all versions
A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. Thi
5.5MEDIUM
 CVE-2022-4904
all versions
A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string, which allo
8.6HIGH
 CVE-2022-3707
all versions
A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overloa
5.5MEDIUM
 CVE-2022-3424
all versions
A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is ca
7.8HIGH
 CVE-2019-8720
all versions
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitr
8.8HIGH
 CVE-2023-27561
all versions
runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To e
7.0HIGH
 CVE-2022-41862
all versions
In PostgreSQL, a modified, unauthenticated server can send an unterminated string during the establishment of Kerberos transport e
3.7LOW
 CVE-2023-1095
all versions
In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft
5.5MEDIUM
 CVE-2023-0361
all versions
A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be suffici
7.4HIGH
 CVE-2022-3560
all versions
A flaw was found in pesign. The pesign package provides a systemd service used to start the pesign daemon. This service unit runs
5.5MEDIUM
 CVE-2022-4254
all versions
sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
8.8HIGH
 CVE-2022-4285
all versions
An illegal memory access flaw was found in the binutils package. Parsing an ELF file containing corrupt symbol version information
5.5MEDIUM
 CVE-2022-4743
all versions
A potential memory leak issue was discovered in SDL2 in GLES_CreateTexture() function in SDL_render_gles.c. The vulnerability allo
7.5HIGH
 CVE-2022-3715
all versions
A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to
7.8HIGH
 CVE-2022-3775
all versions
When rendering certain unicode sequences, grub2's font code doesn't proper validate if the informed glyph's width and height is co
7.1HIGH
 CVE-2022-4283
all versions
A vulnerability was found in X.Org. This security flaw occurs because the XkbCopyNames function left a dangling pointer to freed m
7.8HIGH
 CVE-2022-4144
all versions
An out-of-bounds read flaw was found in the QXL display device emulation in QEMU. The qxl_phys2virt() function does not check the
6.5MEDIUM
 CVE-2022-3500
all versions
A vulnerability was found in keylime. This security issue happens in some circumstances, due to some improperly handled exceptions
5.1MEDIUM
 CVE-2022-3821
all versions
An off-by-one Error issue was discovered in Systemd in format_timespan() function of time-util.c. An attacker could supply specifi
5.5MEDIUM
 CVE-2022-2963
all versions
A vulnerability found in jasper. This security vulnerability happens because of a memory leak bug in function cmdopts_parse that c
7.5HIGH
 CVE-2022-2850
all versions
A flaw was found In 389-ds-base. When the Content Synchronization plugin is enabled, an authenticated user can reach a NULL pointe
6.5MEDIUM
 CVE-2022-2990
all versions
An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosu
7.1HIGH
 CVE-2022-2989
all versions
An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosur
7.1HIGH
 CVE-2022-2964
all versions
A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerab
7.8HIGH
 CVE-2022-2905
all versions
An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpf_tail_call function wit
5.5MEDIUM
 CVE-2020-10735
all versions
A flaw was found in python. In algorithms with quadratic time complexity using non-binary bases, when using int("text"), a system
7.5HIGH
 CVE-2022-25310
all versions
A segmentation fault (SEGV) flaw was found in the Fribidi package and affects the fribidi_remove_bidi_marks() function of the lib/
5.5MEDIUM
 CVE-2022-25309
all versions
A heap-based buffer overflow flaw was found in the Fribidi package and affects the fribidi_cap_rtl_to_unicode() function of the fr
5.5MEDIUM
 CVE-2022-25308
all versions
A stack-based buffer overflow flaw was found in the Fribidi package. This flaw allows an attacker to pass a specially crafted file
7.8HIGH
 CVE-2022-2639
all versions
An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying
7.8HIGH
 CVE-2022-2153
all versions
A flaw was found in the Linux kernel’s KVM when attempting to set a SynIC IRQ. This issue makes it possible for a misbehaving VM
5.5MEDIUM
 CVE-2022-2132
all versions
A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service trigg
8.6HIGH
 CVE-2022-1355
all versions
A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TI
6.1MEDIUM
 CVE-2022-1354
all versions
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker t
5.5MEDIUM
 CVE-2022-1263
all versions
A NULL pointer dereference issue was found in KVM when releasing a vCPU with dirty ring support enabled. This flaw allows an unpri
5.5MEDIUM
 CVE-2022-1247
all versions
An issue found in linux-kernel that leads to a race condition in rose_connect(). The rose driver uses rose_neigh-use to represent
7.0HIGH
 CVE-2022-1199
all versions
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the
7.5HIGH
 CVE-2022-1198
all versions
A use-after-free vulnerabilitity was discovered in drivers/net/hamradio/6pack.c of linux that allows an attacker to crash linux ke
5.5MEDIUM
 CVE-2022-1184
all versions
A use-after-free flaw was found in fs/ext4/namei.c:dx_insert_block() in the Linux kernel’s filesystem sub-component. This flaw a
5.5MEDIUM
 CVE-2022-1016
all versions
A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain, which can cause a use-after-free. This issue
5.5MEDIUM
 CVE-2022-0934
all versions
A single-byte, non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted pack
7.5HIGH
 CVE-2022-0852
all versions
There is a flaw in convert2rhel. convert2rhel passes the Red Hat account password to subscription-manager via the command line, wh
5.5MEDIUM
 CVE-2022-0851
all versions
There is a flaw in convert2rhel. When the --activationkey option is used with convert2rhel, the activation key is subsequently pas
5.5MEDIUM
 CVE-2022-0485
all versions
A flaw was found in the copying tool nbdcopy of libnbd. When performing multi-threaded copies using asynchronous nbd calls, nbdc
4.8MEDIUM
 CVE-2022-0480
all versions
A flaw was found in the filelock_init in fs/locks.c function in the Linux kernel. This issue can lead to host memory exhaustion du
5.5MEDIUM
 CVE-2022-0358
all versions
A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This flaw is strictly related to CVE-
7.8HIGH
 CVE-2022-34303
all versions
A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Bo
6.7MEDIUM
 CVE-2022-34302
all versions
A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper wit
6.7MEDIUM
 CVE-2022-34301
all versions
A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper w
6.7MEDIUM
 CVE-2022-0175
all versions
A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocatin
5.5MEDIUM
 CVE-2022-0171
all versions
A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level applic
5.5MEDIUM
 CVE-2022-0168
all versions
A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common I
4.4MEDIUM
 CVE-2021-3864
all versions
A flaw was found in the way the dumpable flag setting was handled when certain SUID binaries executed its descendants. The prerequ
7.0HIGH
 CVE-2021-3669
all versions
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts
5.5MEDIUM
 CVE-2021-35939
all versions
It was found that the fix for CVE-2017-7500 and CVE-2017-7501 was incomplete: the check was only implemented for the parent direct
6.7MEDIUM
 CVE-2021-35938
all versions
A symbolic link issue was found in rpm. It occurs when rpm sets the desired permissions and credentials after installing a file. A
6.7MEDIUM
 CVE-2021-35937
all versions
A race condition vulnerability was found in rpm. A local unprivileged user could use this flaw to bypass the checks that were intr
6.4MEDIUM
 CVE-2022-0135
all versions
An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to
7.8HIGH
 CVE-2021-4217
all versions
A flaw was found in unzip. The vulnerability occurs due to improper handling of Unicode strings, which can lead to a null pointer
3.3LOW
 CVE-2021-4213
all versions
A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory
7.5HIGH
 CVE-2021-4209
all versions
A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy, providing zero-leng
6.5MEDIUM
 CVE-2021-4204
all versions
An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allo
7.1HIGH
 CVE-2021-4189
all versions
A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is h
5.3MEDIUM
 CVE-2021-4159
all versions
A vulnerability was found in the Linux kernel's EBPF verifier when handling internal data structures. Internal memory locations co
4.4MEDIUM
 CVE-2021-4158
all versions
A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this
6.0MEDIUM
 CVE-2022-2938
all versions
A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default, it
7.8HIGH
 CVE-2021-3997
all versions
A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too m
5.5MEDIUM
 CVE-2021-3839
all versions
A flaw was found in the vhost library in DPDK. Function vhost_user_set_inflight_fd() does not validate `msg-payload.inflight.num_q
7.5HIGH
 CVE-2021-3714
all versions
A flaw was found in the Linux kernels memory deduplication mechanism. Previous work has shown that memory deduplication can be att
5.9MEDIUM
 CVE-2021-20316
all versions
A flaw was found in the way Samba handled file/directory metadata. This flaw allows an authenticated attacker with permissions to
6.8MEDIUM
 CVE-2022-2873
all versions
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user tr
5.5MEDIUM
 CVE-2021-3659
all versions
A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user
5.5MEDIUM
 CVE-2022-2625
all versions
A vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary objects in at least one schema, t
8.0HIGH
 CVE-2020-14394
all versions
An infinite loop flaw was found in the USB xHCI controller emulation of QEMU while computing the length of the Transfer Request Bl
3.2LOW
 CVE-2022-1158
all versions
A flaw was found in KVM. When updating a guest's page table entry, vm_pgoff was improperly used as the offset to get the page's pf
7.8HIGH
 CVE-2022-2509
all versions
A vulnerability found in gnutls. This security flaw happens because of a double free error occurs during verification of pkcs7 sig
7.5HIGH
 CVE-2022-35653
all versions
A reflected XSS issue was identified in the LTI module of Moodle. The vulnerability exists due to insufficient sanitization of use
6.1MEDIUM
 CVE-2022-35651
all versions
A stored XSS and blind SSRF vulnerability was found in Moodle, occurs due to insufficient sanitization of user-supplied data in th
6.1MEDIUM
 CVE-2022-2393
all versions
A flaw was found in pki-core, which could allow a user to get a certificate for another user identity when directory-based authent
5.7MEDIUM
 CVE-2022-2211
all versions
A vulnerability was found in libguestfs. This issue occurs while calculating the greatest possible number of matching keys in the
6.5MEDIUM
 CVE-2021-3697
all versions
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap.
7.0HIGH
 CVE-2021-3696
all versions
A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in
4.5MEDIUM
 CVE-2021-3695
all versions
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to
4.5MEDIUM
 CVE-2022-2078
all versions
A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a bu
5.5MEDIUM
 CVE-2022-1852
all versions
A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emu
5.5MEDIUM
 CVE-2022-0987
all versions
A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. This issue allo
3.3LOW
 CVE-2022-1665
all versions
A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure
8.2HIGH
 CVE-2022-32547
all versions
In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which
7.8HIGH
 CVE-2022-32546
all versions
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/p
7.8HIGH
 CVE-2022-32545
all versions
A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/p
7.8HIGH
 CVE-2022-1998
all versions
A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user
7.8HIGH
 CVE-2022-1708
all versions
A vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyone with access to the Kube API.
7.5HIGH
 CVE-2022-1949
all versions
An access control bypass vulnerability found in 389-ds-base. That mishandling of the filter that would yield incorrect results, bu
7.5HIGH
 CVE-2022-1789
all versions
With shadow paging enabled, the INVPCID instruction results in a call to kvm_mmu_invpcid_gva. If INVPCID is executed with CR0.PG=0
6.8MEDIUM
 CVE-2022-1652
all versions
Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in
7.8HIGH
 CVE-2022-1462
all versions
An out-of-bounds read flaw was found in the Linux kernel’s TeleTYpe subsystem. The issue occurs in how a user triggers a race co
6.3MEDIUM
 CVE-2022-30600
all versions
A flaw was found in moodle where logic used to count failed login attempts could result in the account lockout threshold being byp
9.8CRITICAL
 CVE-2022-30599
all versions
A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.
9.8CRITICAL
 CVE-2022-30598
all versions
A flaw was found in moodle where global search results could include author information on some activities where a user may not ot
4.3MEDIUM
 CVE-2022-30597
all versions
A flaw was found in moodle where the description user field was not hidden when being set as a hidden user field.
5.3MEDIUM
 CVE-2022-30596
all versions
A flaw was found in moodle where ID numbers displayed when bulk allocating markers to assignments required additional sanitizing t
5.4MEDIUM
 CVE-2022-1706
all versions
A vulnerability was found in Ignition where ignition configs are accessible from unprivileged containers in VMs running on VMware
6.5MEDIUM
 CVE-2022-1587
all versions
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit
9.1CRITICAL
 CVE-2022-1586
all versions
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2
9.1CRITICAL
 CVE-2021-3611
all versions
A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw t
6.5MEDIUM
 CVE-2021-3750
all versions
A DMA reentrancy issue was found in the USB EHCI controller emulation of QEMU. EHCI does not verify if the Buffer Pointer overlaps
8.2HIGH
 CVE-2022-0984
all versions
Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with
4.3MEDIUM
 CVE-2021-4207
all versions
A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values cursor-header.width and
8.2HIGH
 CVE-2021-4206
all versions
A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursor_alloc() function can lead to the a
8.2HIGH
 CVE-2022-1353
all versions
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unpriv
7.1HIGH
 CVE-2022-1227
all versions
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. O
8.8HIGH
 CVE-2022-1048
all versions
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_para
7.0HIGH
 CVE-2021-42781
all versions
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs
5.3MEDIUM
 CVE-2021-42780
all versions
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs us
5.3MEDIUM
 CVE-2021-42779
all versions
A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.
5.3MEDIUM
 CVE-2021-42778
all versions
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo.
5.3MEDIUM
 CVE-2022-1304
all versions
An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arb
7.8HIGH
 CVE-2022-1280
all versions
A use-after-free vulnerability was found in drm_lease_held in drivers/gpu/drm/drm_lease.c in the Linux kernel due to a race proble
6.3MEDIUM
 CVE-2022-28796
all versions
jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_
7.0HIGH
 CVE-2022-27651
all versions
A flaw was found in buildah where containers were incorrectly started with non-empty default permissions. A bug was found in Moby
6.8MEDIUM
 CVE-2022-27650
all versions
A flaw was found in crun where containers were incorrectly started with non-empty default permissions. A vulnerability was found i
7.5HIGH
 CVE-2022-27649
all versions
A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was foun
7.5HIGH
 CVE-2020-35501
all versions
A flaw was found in the Linux kernels implementation of audit rules, where a syscall can unexpectedly not be correctly not be logg
3.4LOW
 CVE-2022-1055
all versions
A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The
7.8HIGH
 CVE-2021-3941
all versions
In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.wh
6.5MEDIUM
 CVE-2022-0996
all versions
A vulnerability was found in the 389 Directory Server that allows expired passwords to access the database to cause improper authe
6.5MEDIUM
 CVE-2021-3748
all versions
A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to
7.5HIGH
 CVE-2022-27666
all versions
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a
7.8HIGH
 CVE-2022-1011
all versions
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a loc
7.8HIGH
 CVE-2022-0918
all versions
A vulnerability was discovered in the 389 Directory Server that allows an unauthenticated attacker with network access to the LDAP
7.5HIGH
 CVE-2021-20257
all versions
An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descripto
6.5MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin