CVE-2026-1709

all versions

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (T

9.4CRITICAL

CVE-2025-13601

all versions

A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(

7.7HIGH

CVE-2025-6021

all versions

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base

7.5HIGH

CVE-2025-3155

all versions

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit

7.4HIGH

CVE-2025-2784

all versions

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white

7.0HIGH

CVE-2025-1756

all versions

mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a u

7.5HIGH

CVE-2025-1755

all versions

MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized action

7.5HIGH

CVE-2024-12088

all versions

A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link dest

6.5MEDIUM

CVE-2024-12087

all versions

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled

6.5MEDIUM

CVE-2024-12085

all versions

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate

7.5HIGH

CVE-2024-9676

all versions

A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can c

6.5MEDIUM

CVE-2024-9675

all versions

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our

7.8HIGH

CVE-2024-7006

all versions

A null pointer dereference flaw was found in Libtiff via tif_dirinfo.c. This issue may allow an attacker to trigger memory alloc

7.5HIGH

CVE-2024-6387

all versions

A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to

8.1HIGH

CVE-2024-3049

all versions

A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allo

5.9MEDIUM

CVE-2023-3758

all versions

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to

7.1HIGH

CVE-2022-24809

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only

6.5MEDIUM

CVE-2022-24808

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write

6.5MEDIUM

CVE-2022-24807

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a S

6.5MEDIUM

CVE-2022-24806

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write

6.5MEDIUM

CVE-2022-24805

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in t

6.5MEDIUM

CVE-2023-7250

all versions

A flaw was found in iperf, a utility for testing network performance using TCP, UDP, and SCTP. A malicious or malfunctioning clien

5.3MEDIUM

CVE-2024-1488

all versions

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif

8.0HIGH

CVE-2023-6681

all versions

A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible passwor

5.3MEDIUM

CVE-2023-5992

all versions

A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This iss

5.6MEDIUM

CVE-2024-0193

all versions

A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when

7.8HIGH

CVE-2023-4641

all versions

A flaw was found in shadow-utils. When asking for a new password, shadow-utils asks the password twice. If the password fails on t

4.7MEDIUM

CVE-2023-5870

all versions

A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replica

2.2LOW

CVE-2023-5869

all versions

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks

8.8HIGH

CVE-2023-5868

all versions

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting c

4.3MEDIUM

CVE-2023-46847

all versions

Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of a

8.6HIGH

CVE-2023-46846

all versions

SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Res

9.3CRITICAL

CVE-2023-3972

all versions

A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of

7.8HIGH

CVE-2023-5633

all versions

The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m

7.8HIGH

CVE-2023-4911

all versions

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia

7.8HIGH

CVE-2023-4732

all versions

A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a lo

4.7MEDIUM

CVE-2023-5157

all versions

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a deni

7.5HIGH

CVE-2023-4806

all versions

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been free

5.9MEDIUM

CVE-2023-4527

all versions

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured

6.5MEDIUM

CVE-2023-4042

all versions

A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it wa

5.5MEDIUM

CVE-2023-3899

all versions

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bu

7.8HIGH

CVE-2021-40438

all versions

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a

9.0CRITICAL

CVE-2019-6470

all versions

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There

6.5MEDIUM

CVE-2019-11043

all versions

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possibl

8.7HIGH

CVE-2019-13272

all versions

In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wa

7.8HIGH

CVE-2019-0211

all versions

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child pr

7.8HIGH