Home/Product/redhat enterprise linux server aus
Product

redhat enterprise linux server aus

500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-5201
all versions
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to i
7.5HIGH
 CVE-2026-4424
all versions
A flaw was found in libarchive. This heap out-of-bounds read vulnerability exists in the RAR archive processing logic due to impro
7.5HIGH
 CVE-2025-13601
all versions
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(
7.7HIGH
 CVE-2025-6021
all versions
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base
7.5HIGH
 CVE-2025-3155
all versions
A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit
7.4HIGH
 CVE-2025-2784
all versions
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white
7.0HIGH
 CVE-2025-1756
all versions
mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a u
7.5HIGH
 CVE-2024-12088
all versions
A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link dest
6.5MEDIUM
 CVE-2024-12087
all versions
A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled
6.5MEDIUM
 CVE-2024-12085
all versions
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate
7.5HIGH
 CVE-2024-9676
all versions
A vulnerability was found in Podman, Buildah, and CRI-O. A symlink traversal vulnerability in the containers/storage library can c
6.5MEDIUM
 CVE-2024-9675
all versions
A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our
7.8HIGH
 CVE-2024-7006
all versions
A null pointer dereference flaw was found in Libtiff via tif_dirinfo.c. This issue may allow an attacker to trigger memory alloc
7.5HIGH
 CVE-2024-6387
all versions
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to
8.1HIGH
 CVE-2023-3758
all versions
A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to
7.1HIGH
 CVE-2022-24809
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only
6.5MEDIUM
 CVE-2022-24808
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write
6.5MEDIUM
 CVE-2022-24807
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a S
6.5MEDIUM
 CVE-2022-24806
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write
6.5MEDIUM
 CVE-2022-24805
all versions
net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in t
6.5MEDIUM
 CVE-2024-1488
all versions
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif
8.0HIGH
 CVE-2024-1062
all versions
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars
5.5MEDIUM
 CVE-2023-6536
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2023-6535
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2023-6356
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5MEDIUM
 CVE-2023-5992
all versions
A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This iss
5.6MEDIUM
 CVE-2023-5455
all versions
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows
6.5MEDIUM
 CVE-2024-0193
all versions
A use-after-free flaw was found in the netfilter subsystem of the Linux kernel. If the catchall element is garbage-collected when
7.8HIGH
 CVE-2023-5870
all versions
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replica
2.2LOW
 CVE-2023-5869
all versions
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks
8.8HIGH
 CVE-2023-5868
all versions
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting c
4.3MEDIUM
 CVE-2023-6606
all versions
An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allo
7.1HIGH
 CVE-2023-46848
all versions
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages
8.6HIGH
 CVE-2023-46847
all versions
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of a
8.6HIGH
 CVE-2023-46846
all versions
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Res
9.3CRITICAL
 CVE-2023-3972
all versions
A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of
7.8HIGH
 CVE-2023-5633
all versions
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m
7.8HIGH
 CVE-2023-4911
all versions
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia
7.8HIGH
 CVE-2023-5157
all versions
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a deni
7.5HIGH
 CVE-2023-4806
all versions
A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been free
5.9MEDIUM
 CVE-2023-4527
all versions
A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured
6.5MEDIUM
 CVE-2023-4813
all versions
A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resultin
5.9MEDIUM
 CVE-2023-38201
all versions
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration.
6.5MEDIUM
 CVE-2023-3899
all versions
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bu
7.8HIGH
 CVE-2023-4147
all versions
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This f
7.8HIGH
 CVE-2023-38200
all versions
A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service against
7.5HIGH
 CVE-2023-2295
all versions
A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received wi
7.5HIGH
 CVE-2023-2491
all versions
A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" functio
7.8HIGH
 CVE-2023-2203
all versions
A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This fla
8.8HIGH
 CVE-2023-0494
all versions
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by
7.8HIGH
 CVE-2019-8720
all versions
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitr
8.8HIGH
 CVE-2022-4254
all versions
sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
8.8HIGH
 CVE-2022-2601
all versions
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating
8.6HIGH
 CVE-2014-0148
all versions
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating B
5.5MEDIUM
 CVE-2014-0147
all versions
Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable t
6.2MEDIUM
 CVE-2014-0144
all versions
QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2 and various other image formats are vulnerable to potential memory corr
8.6HIGH
 CVE-2021-3669
all versions
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts
5.5MEDIUM
 CVE-2021-31566
all versions
An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and
7.8HIGH
 CVE-2021-23177
all versions
An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of t
7.8HIGH
 CVE-2021-3659
all versions
A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user
5.5MEDIUM
 CVE-2021-3697
all versions
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap.
7.0HIGH
 CVE-2021-3696
all versions
A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in
4.5MEDIUM
 CVE-2021-3695
all versions
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to
4.5MEDIUM
 CVE-2022-1227
all versions
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. O
8.8HIGH
 CVE-2022-27649
all versions
A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was foun
7.5HIGH
 CVE-2022-0435
all versions
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious
8.8HIGH
 CVE-2022-0330
all versions
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicio
7.8HIGH
 CVE-2022-1011
all versions
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a loc
7.8HIGH
 CVE-2022-0847
all versions
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_
7.8HIGH
 CVE-2022-0516
all versions
A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel.
7.8HIGH
 CVE-2021-3733
all versions
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s
6.5MEDIUM
 CVE-2021-3656
all versions
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual
8.8HIGH
 CVE-2022-0492
all versions
A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw,
7.8HIGH
 CVE-2021-3609
all versions
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsy
7.0HIGH
 CVE-2021-44142
all versions
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients
8.8HIGH
 CVE-2020-25719
all versions
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The S
7.2HIGH
 CVE-2020-25717
all versions
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possibl
8.1HIGH
 CVE-2016-2124
all versions
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext passw
5.9MEDIUM
 CVE-2021-3551
all versions
A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installat
7.8HIGH
 CVE-2021-4034
all versions
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed
7.8HIGH
 CVE-2021-3621
all versions
A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire s
8.8HIGH
 CVE-2021-3672
all versions
A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers) can
5.6MEDIUM
 CVE-2021-40438
all versions
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a
9.0CRITICAL
 CVE-2020-14301
all versions
An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based d
6.5MEDIUM
 CVE-2021-20233
all versions
A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on
8.2HIGH
 CVE-2021-20225
all versions
A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocate
6.7MEDIUM
 CVE-2020-27779
all versions
A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged
7.5HIGH
 CVE-2020-27749
all versions
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their c
6.7MEDIUM
 CVE-2020-25647
all versions
A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bound
7.6HIGH
 CVE-2020-25632
all versions
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependenc
8.2HIGH
 CVE-2020-14372
all versions
A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot i
7.5HIGH
 CVE-2020-9490
all versions
Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would re
7.5HIGH
 CVE-2020-14311
all versions
There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic lin
5.7MEDIUM
 CVE-2020-14310
all versions
There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MA
5.7MEDIUM
 CVE-2019-15605
all versions
HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed
9.8CRITICAL
 CVE-2019-15604
all versions
Improper Certificate Validation in Node.js 10, 12, and 13 causes the process to abort when sending a crafted X.509 certificate
7.5HIGH
 CVE-2014-8140
all versions
Heap-based buffer overflow in the test_compr_eb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbi
7.8HIGH
 CVE-2014-8139
all versions
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrar
7.8HIGH
 CVE-2020-2659
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.7LOW
 CVE-2020-2654
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7
3.7LOW
 CVE-2020-2604
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
8.1HIGH
 CVE-2020-2601
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
6.8MEDIUM
 CVE-2020-2593
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
4.8MEDIUM
 CVE-2020-2590
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
3.7LOW
 CVE-2020-2583
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7LOW
 CVE-2015-3147
all versions
daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allo
6.5MEDIUM
 CVE-2014-7844
all versions
BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.
7.8HIGH
 CVE-2020-6851
all versions
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k
7.5HIGH
 CVE-2019-17024
all versions
Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of m
8.8HIGH
 CVE-2019-17022
all versions
When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer does not escape < and > chara
6.1MEDIUM
 CVE-2019-17017
all versions
Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that wit
8.8HIGH
 CVE-2019-17016
all versions
When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace r
6.1MEDIUM
 CVE-2019-11745
all versions
When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of
8.8HIGH
 CVE-2019-19906
all versions
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via
7.5HIGH
 CVE-2018-1311
all versions
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This
8.1HIGH
 CVE-2019-13734
all versions
Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corrupt
8.8HIGH
 CVE-2019-5544
all versions
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issu
9.8CRITICAL
 CVE-2019-10216
all versions
In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to by
7.8HIGH
 CVE-2019-14815
all versions
A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Dr
7.8HIGH
 CVE-2018-12207
all versions
Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an aut
6.5MEDIUM
 CVE-2019-11135
all versions
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enabl
6.5MEDIUM
 CVE-2019-0155
all versions
Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM)
7.8HIGH
 CVE-2017-5333
all versions
Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local
7.8HIGH
 CVE-2017-5332
all versions
The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows
7.8HIGH
 CVE-2019-6470
all versions
There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There
6.5MEDIUM
 CVE-2019-5010
all versions
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specia
7.5HIGH
 CVE-2019-11043
all versions
In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possibl
8.7HIGH
 CVE-2019-14287
all versions
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM
8.8HIGH
 CVE-2019-2999
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc). Supported versions that are affected are Java SE: 7u2
4.7MEDIUM
 CVE-2019-2992
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7LOW
 CVE-2019-2988
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7LOW
 CVE-2019-2983
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7LOW
 CVE-2019-2981
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected a
3.7LOW
 CVE-2019-2978
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.7LOW
 CVE-2019-2973
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected a
3.7LOW
 CVE-2019-2964
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are aff
3.7LOW
 CVE-2019-2962
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7LOW
 CVE-2019-2945
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.1LOW
 CVE-2019-14823
all versions
A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, wher
7.4HIGH
 CVE-2019-16884
all versions
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcon
7.5HIGH
 CVE-2019-14816
all versions
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel,
7.8HIGH
 CVE-2019-14814
all versions
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux k
7.8HIGH
 CVE-2019-14821
all versions
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor im
8.8HIGH
 CVE-2019-14835
all versions
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates
7.8HIGH
 CVE-2019-14813
all versions
A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its p
9.8CRITICAL
 CVE-2019-15718
all versions
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the sy
4.4MEDIUM
 CVE-2019-1125
all versions
An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacke
5.6MEDIUM
 CVE-2019-10086
all versions
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker
7.3HIGH
 CVE-2019-9506
all versions
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not pre
8.1HIGH
 CVE-2019-10168
all versions
The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.
7.8HIGH
 CVE-2019-10167
all versions
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" a
7.8HIGH
 CVE-2019-10166
all versions
It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the vir
7.8HIGH
 CVE-2019-10182
all versions
It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from <jar/> elements in JNLP files. An attack
8.2HIGH
 CVE-2018-16871
all versions
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is a
7.5HIGH
 CVE-2019-2879
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2834
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2830
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2826
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are a
4.9MEDIUM
 CVE-2019-2819
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Audit). Supported versions that are a
5.5MEDIUM
 CVE-2019-2815
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2814
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
2.2LOW
 CVE-2019-2812
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2811
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2810
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2808
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2805
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5MEDIUM
 CVE-2019-2803
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2802
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2801
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are
4.9MEDIUM
 CVE-2019-2800
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
7.1HIGH
 CVE-2019-2798
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2797
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected
4.2MEDIUM
 CVE-2019-2796
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2795
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected
6.5MEDIUM
 CVE-2019-2789
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
2.7LOW
 CVE-2019-2785
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2784
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are
4.9MEDIUM
 CVE-2019-2780
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Components / Services). Supported versions that
4.9MEDIUM
 CVE-2019-2778
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
5.4MEDIUM
 CVE-2019-2774
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2757
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2755
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9MEDIUM
 CVE-2019-2752
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.9MEDIUM
 CVE-2019-2740
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are
6.5MEDIUM
 CVE-2019-2739
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
5.1MEDIUM
 CVE-2019-2738
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Compiling). Supported versions that are affect
3.1LOW
 CVE-2019-9959
all versions
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integ
6.5MEDIUM
 CVE-2019-1010238
all versions
Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code
9.8CRITICAL
 CVE-2019-13616
all versions
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_bli
8.1HIGH
 CVE-2019-12527
all versions
An issue was discovered in Squid 4.0.23 through 4.7. When checking Basic Authentication with HttpHeader::getAuth, Squid uses a glo
8.8HIGH
 CVE-2019-10193
all versions
A stack-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0
7.2HIGH
 CVE-2019-10192
all versions
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.
7.2HIGH
 CVE-2019-13313
all versions
libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-
7.8HIGH
 CVE-2019-12817
all versions
arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be ab
7.0HIGH
 CVE-2019-3896
all versions
A double-free can happen in idr_remove_all() in lib/idr.c in the Linux kernel 2.6 branch. An unprivileged local attacker can use t
7.0HIGH
 CVE-2019-10126
all versions
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/
9.8CRITICAL
 CVE-2019-10160
all versions
A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting ve
9.8CRITICAL
 CVE-2019-9755
all versions
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g wi
7.0HIGH
 CVE-2019-11356
all versions
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrar
9.8CRITICAL
 CVE-2019-12450
all versions
file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy ope
9.8CRITICAL
 CVE-2019-0820
all versions
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework a
7.5HIGH
 CVE-2019-11833
all versions
fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in the extent tree block, which mig
5.5MEDIUM
 CVE-2019-11884
all versions
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain poten
3.3LOW
 CVE-2019-11811
all versions
An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports af
7.0HIGH
 CVE-2019-9810
all versions
Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buff
8.8HIGH
 CVE-2019-9792
all versions
The IonMonkey just-in-time (JIT) compiler can leak an internal JS_OPTIMIZED_OUT magic value to the running script during a bailout
9.8CRITICAL
 CVE-2019-9791
all versions
The type inference system allows the compilation of functions that can cause type confusions between arbitrary objects when compil
9.8CRITICAL
 CVE-2019-9788
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5
9.8CRITICAL
 CVE-2019-2698
all versions
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u2
8.1HIGH
 CVE-2019-2695
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2694
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2693
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2691
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are a
4.9MEDIUM
 CVE-2019-2689
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2688
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2687
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2686
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2685
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2684
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affect
5.9MEDIUM
 CVE-2019-2683
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.9MEDIUM
 CVE-2019-2681
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2644
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9MEDIUM
 CVE-2019-2636
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Group Replication Plugin). Supported versions t
4.4MEDIUM
 CVE-2019-2635
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9MEDIUM
 CVE-2019-2634
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
5.1MEDIUM
 CVE-2019-2631
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Information Schema). Supported versions that ar
4.9MEDIUM
 CVE-2019-2630
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4MEDIUM
 CVE-2019-2628
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.2
4.9MEDIUM
 CVE-2019-2627
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2626
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9MEDIUM
 CVE-2019-2625
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2624
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2623
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
5.3MEDIUM
 CVE-2019-2620
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2617
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4MEDIUM
 CVE-2019-2614
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4MEDIUM
 CVE-2019-2607
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2606
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2602
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are
7.5HIGH
 CVE-2019-2596
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2593
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2592
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: PS). Supported versions that are affected are 5
4.9MEDIUM
 CVE-2019-2589
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2587
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Partition). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2585
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-2584
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2581
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2580
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9MEDIUM
 CVE-2019-0223
all versions
While investigating bug PROTON-2014, we discovered that under some circumstances Apache Qpid Proton versions 0.9 to 0.27.0 (C libr
7.4HIGH
 CVE-2019-11459
all versions
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0
5.5MEDIUM
 CVE-2019-11235
all versions
FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the received scalar is within a range, and that the receiv
9.8CRITICAL
 CVE-2018-16877
all versions
A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A loca
7.8HIGH
 CVE-2019-3460
all versions
A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.
6.5MEDIUM
 CVE-2019-3459
all versions
A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.
6.5MEDIUM
 CVE-2017-3139
all versions
A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named
7.5HIGH
 CVE-2019-3887
all versions
A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization e
5.6MEDIUM
 CVE-2019-0757
all versions
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modi
6.5MEDIUM
 CVE-2019-0211
all versions
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child pr
7.8HIGH
 CVE-2019-0160
all versions
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or
9.8CRITICAL
 CVE-2019-3878
all versions
A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is con
8.1HIGH
 CVE-2019-3857
all versions
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHAN
8.8HIGH
 CVE-2019-3856
all versions
An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard p
8.8HIGH
 CVE-2019-3838
all versions
It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially
5.5MEDIUM
 CVE-2019-3835
all versions
It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted
5.5MEDIUM
 CVE-2019-3863
all versions
A flaw was found in libssh2 before 1.8.1 creating a vulnerability on the SSH client side. A server could send a multiple keyboard
7.5HIGH
 CVE-2019-3855
all versions
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are
8.8HIGH
 CVE-2019-9903
all versions
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find
6.5MEDIUM
 CVE-2019-7222
all versions
The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.
5.5MEDIUM
 CVE-2019-7221
all versions
The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.
7.8HIGH
 CVE-2019-6454
all versions
An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-len
5.5MEDIUM
 CVE-2019-6116
all versions
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote cod
7.8HIGH
 CVE-2019-3816
all versions
Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openws
7.5HIGH
 CVE-2019-9636
all versions
Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc)
9.8CRITICAL
 CVE-2018-18498
all versions
A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is
9.8CRITICAL
 CVE-2018-18494
all versions
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause
6.5MEDIUM
 CVE-2018-18493
all versions
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due
9.8CRITICAL
 CVE-2018-18492
all versions
A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the o
9.8CRITICAL
 CVE-2018-12405
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bug
9.8CRITICAL
 CVE-2018-12396
all versions
A vulnerability where a WebExtension can run content scripts in disallowed contexts following navigation or other events. This all
6.5MEDIUM
 CVE-2018-12393
all versions
A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF
7.5HIGH
 CVE-2018-12392
all versions
When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exp
9.8CRITICAL
 CVE-2018-12390
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bug
9.8CRITICAL
 CVE-2018-12389
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed eviden
8.8HIGH
 CVE-2019-7164
all versions
SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter.
9.8CRITICAL
 CVE-2019-6974
all versions
In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race
8.1HIGH
 CVE-2019-8308
all versions
Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the apply_extra script sandbox, which allows attackers to
8.2HIGH
 CVE-2019-7665
all versions
In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32_xlatetom in elf32_xlatetom.c in libelf. A cr
5.5MEDIUM
 CVE-2019-7664
all versions
In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note in libelf/note_xlate.h because of an incorrect overflow ch
5.5MEDIUM
 CVE-2019-7548
all versions
SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled.
7.8HIGH
 CVE-2018-18506
all versions
When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded loca
5.9MEDIUM
 CVE-2018-18505
all versions
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication betwee
10.0CRITICAL
 CVE-2018-18501
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 64 and Firefox ESR 60.4. Some of these bug
9.8CRITICAL
 CVE-2018-18500
all versions
A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the s
9.8CRITICAL
 CVE-2019-3813
all versions
Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This
7.5HIGH
 CVE-2019-7310
all versions
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) al
7.8HIGH
 CVE-2019-6111
all versions
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/
5.9MEDIUM
 CVE-2019-6109
all versions
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-T
6.8MEDIUM
 CVE-2019-7150
all versions
An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function elf64_xlatetom in libelf/elf32_xlatetom.
5.5MEDIUM
 CVE-2019-3815
all versions
A memory leak was discovered in the backport of fixes for CVE-2018-16864 in Red Hat Enterprise Linux. Function dispatch_message_re
3.3LOW
 CVE-2018-5740
all versions
"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding
7.5HIGH
 CVE-2018-5733
all versions
A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually ov
7.5HIGH
 CVE-2017-3145
all versions
BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free
7.5HIGH
 CVE-2017-3144
all versions
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket d
7.5HIGH
 CVE-2017-3143
all versions
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name
7.5HIGH
 CVE-2017-3142
all versions
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name
5.3MEDIUM
 CVE-2017-3137
all versions
Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records
7.5HIGH
 CVE-2017-3136
all versions
A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. A
5.9MEDIUM
 CVE-2017-3135
all versions
Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent sta
7.5HIGH
 CVE-2019-2539
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). Supported versions that are affect
4.9MEDIUM
 CVE-2019-2537
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9MEDIUM
 CVE-2019-2536
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affecte
5.0MEDIUM
 CVE-2019-2535
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.1MEDIUM
 CVE-2019-2534
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
7.1HIGH
 CVE-2019-2533
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions tha
6.5MEDIUM
 CVE-2019-2532
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9MEDIUM
 CVE-2019-2531
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9MEDIUM
 CVE-2019-2530
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2529
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5MEDIUM
 CVE-2019-2510
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.2
4.9MEDIUM
 CVE-2019-2503
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that a
6.4MEDIUM
 CVE-2019-2481
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2019-2455
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5MEDIUM
 CVE-2019-2436
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
5.5MEDIUM
 CVE-2019-2434
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5MEDIUM
 CVE-2019-2422
all versions
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java
3.1LOW
 CVE-2019-2420
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9MEDIUM
 CVE-2018-16865
all versions
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in syst
7.8HIGH
 CVE-2018-16864
all versions
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in syst
7.8HIGH
 CVE-2018-16866
all versions
An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A loca
3.3LOW
 CVE-2019-6133
all versions
In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore
6.7MEDIUM
 CVE-2018-20685
all versions
In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or
5.3MEDIUM
 CVE-2018-20662
all versions
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h
6.5MEDIUM
 CVE-2018-20650
all versions
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a chec
6.5MEDIUM
 CVE-2018-19134
all versions
In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain types. A specially crafted PostScri
7.8HIGH
 CVE-2018-15127
all versions
LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of fil
9.8CRITICAL
 CVE-2018-18397
all versions
The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as dem
5.5MEDIUM
 CVE-2018-18356
all versions
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote atta
8.8HIGH
 CVE-2018-18311
all versions
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write ope
9.8CRITICAL
 CVE-2018-9568
all versions
In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of pr
7.8HIGH
 CVE-2018-16863
all versions
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw
7.3HIGH
 CVE-2018-8787
all versions
FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_
9.8CRITICAL
 CVE-2018-8786
all versions
FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_re
9.8CRITICAL
 CVE-2018-12121
all versions
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a c
7.5HIGH
 CVE-2018-14646
all versions
The Linux kernel before 4.15-rc8 was found to be vulnerable to a NULL pointer dereference bug in the __netlink_ns_capable() functi
5.5MEDIUM
 CVE-2018-19477
all versions
psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2
7.8HIGH
 CVE-2018-19476
all versions
psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolor
7.8HIGH
 CVE-2018-19475
all versions
psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available
7.8HIGH
 CVE-2018-19409
all versions
An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.
9.8CRITICAL
 CVE-2018-5407
all versions
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a sid
4.7MEDIUM
 CVE-2018-17466
all versions
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds m
8.8HIGH
 CVE-2018-19115
all versions
keepalived before 2.0.7 has a heap-based buffer overflow when parsing HTTP status codes resulting in DoS or possibly unspecified o
9.8CRITICAL
 CVE-2018-18897
all versions
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstra
6.5MEDIUM
 CVE-2016-2125
all versions
It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authenticati
6.5MEDIUM
 CVE-2018-15688
all versions
A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd
8.8HIGH
 CVE-2018-14665
all versions
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when startin
6.6MEDIUM
 CVE-2018-18559
all versions
In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanout_add from setsockopt and bind o
8.1HIGH
 CVE-2018-18284
all versions
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy o
8.6HIGH
 CVE-2018-5188
all versions
Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corru
9.8CRITICAL
 CVE-2018-5156
all versions
A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This ca
9.8CRITICAL
 CVE-2018-12387
all versions
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack p
9.1CRITICAL
 CVE-2018-12386
all versions
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This le
8.1HIGH
 CVE-2018-12385
all versions
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the us
7.0HIGH
 CVE-2018-12383
all versions
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still
5.5MEDIUM
 CVE-2018-12379
all versions
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered
7.8HIGH
 CVE-2018-12378
all versions
A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providin
9.8CRITICAL
 CVE-2018-12377
all versions
A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the t
9.8CRITICAL
 CVE-2018-12376
all versions
Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we pres
9.8CRITICAL
 CVE-2018-12366
all versions
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value
6.5MEDIUM
 CVE-2018-12365
all versions
A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without us
6.5MEDIUM
 CVE-2018-12364
all versions
NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin requests, bypassing CORS by making a same-origin POST that do
8.8HIGH
 CVE-2018-12363
all versions
A use-after-free vulnerability can occur when script uses mutation events to move DOM nodes between documents, resulting in the ol
8.8HIGH
 CVE-2018-12362
all versions
An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resu
8.8HIGH
 CVE-2018-12360
all versions
A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that
8.8HIGH
 CVE-2018-12359
all versions
A buffer overflow can occur when rendering canvas content while adjusting the height and width of the canvas element dynamically,
8.8HIGH
 CVE-2018-18445
all versions
In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF ver
7.8HIGH
 CVE-2018-3214
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound). Supported versions that
5.3MEDIUM
 CVE-2018-3183
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Scripting). Supported versions
9.0CRITICAL
 CVE-2018-3180
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE). Supported versions that
5.6MEDIUM
 CVE-2018-3169
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are af
8.3HIGH
 CVE-2018-3149
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that
8.3HIGH
 CVE-2018-3139
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are
3.1LOW
 CVE-2018-3136
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are a
3.4LOW
 CVE-2018-18073
all versions
Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the sa
6.3MEDIUM
 CVE-2018-17961
all versions
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler
8.6HIGH
 CVE-2018-1000805
all versions
Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server
8.8HIGH
 CVE-2018-17456
all versions
Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.
9.8CRITICAL
 CVE-2018-11784
all versions
When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to
4.3MEDIUM
 CVE-2018-17972
all versions
An issue was discovered in the proc_pid_stack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure t
5.5MEDIUM
 CVE-2018-14650
all versions
It was discovered that sos-collector does not properly set the default permissions of newly created files, making all files create
5.9MEDIUM
 CVE-2018-14634
all versions
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to S
7.8HIGH
 CVE-2018-14633
all versions
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authe
7.0HIGH
 CVE-2018-17183
all versions
Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to sup
7.8HIGH
 CVE-2018-16802
all versions
An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stac
7.8HIGH
 CVE-2018-5391
all versions
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targetin
7.5HIGH
 CVE-2018-14624
all versions
A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log
7.5HIGH
 CVE-2018-16541
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice
5.5MEDIUM
 CVE-2018-16540
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a u
7.8HIGH
 CVE-2018-16539
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp
5.5MEDIUM
 CVE-2018-16511
all versions
An issue was discovered in Artifex Ghostscript before 9.24. A type confusion in "ztype" could be used by remote attackers able to
7.8HIGH
 CVE-2018-14622
all versions
A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. The return value of makefd_xprt() was not
7.5HIGH
 CVE-2018-15911
all versions
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access i
7.8HIGH
 CVE-2018-15909
all versions
In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be used by attackers able to supp
7.8HIGH
 CVE-2018-15908
all versions
In Artifex Ghostscript 9.23 before 2018-08-23, attackers are able to supply malicious PostScript files to bypass .tempfile restric
7.8HIGH
 CVE-2015-5160
all versions
libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local
5.5MEDIUM
 CVE-2018-10873
all versions
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked suff
8.3HIGH
 CVE-2018-5390
all versions
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for ev
7.5HIGH
 CVE-2016-9583
all versions
An out-of-bounds heap read vulnerability was found in the jpc_pi_nextpcrl() function of jasper before 2.0.6 when processing crafte
5.5MEDIUM
 CVE-2016-8654
all versions
A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. jas
7.8HIGH
 CVE-2016-8635
all versions
It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. A
5.3MEDIUM
 CVE-2016-9573
all versions
An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. Converting a specially crafted JPEG2000
6.5MEDIUM
 CVE-2017-7518
all versions
A flaw was found in the Linux kernel before version 4.12 in the way the KVM module processed the trap flag(TF) bit in EFLAGS durin
5.5MEDIUM
 CVE-2016-9603
all versions
A heap buffer overflow flaw was found in QEMU's Cirrus CLGD 54xx VGA emulator's VNC display driver support before 2.9; the issue c
5.5MEDIUM
 CVE-2016-9578
all versions
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE
7.5HIGH
 CVE-2017-15101
all versions
A missing patch for a stack-based buffer overflow in findTable() was found in Red Hat version of liblouis before 2.5.4. An attacke
7.8HIGH
 CVE-2017-15097
all versions
Privilege escalation flaws were found in the Red Hat initialization scripts of PostgreSQL. An attacker with access to the postgres
6.5MEDIUM
 CVE-2016-9577
all versions
A vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An authenticated attacker could send cra
7.5HIGH
 CVE-2017-2634
all versions
It was found that the Linux kernel's Datagram Congestion Control Protocol (DCCP) implementation before 2.6.22.17 used the IPv4-onl
7.5HIGH
 CVE-2017-2633
all versions
An out-of-bounds memory access issue was found in Quick Emulator (QEMU) before 1.7.2 in the VNC display driver. This flaw could oc
5.4MEDIUM
 CVE-2017-2626
all versions
It was discovered that libICE before 1.0.9-8 used a weak entropy to generate keys. A local attacker could potentially use this fla
5.2MEDIUM
 CVE-2017-2620
all versions
Quick emulator (QEMU) before 2.8 built with the Cirrus CLGD 54xx VGA Emulator support is vulnerable to an out-of-bounds access iss
5.5MEDIUM
 CVE-2017-2618
all versions
A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr files before 4.9.10. An empty (nu
5.5MEDIUM
 CVE-2017-2616
all versions
A race condition was found in util-linux before 2.32.1 in the way su handled the management of child processes. A local authentica
5.5MEDIUM
 CVE-2017-2640
all versions
An out-of-bounds write flaw was found in the way Pidgin before 2.12.0 processed XML content. A malicious remote server could poten
7.5HIGH
 CVE-2017-2625
all versions
It was discovered that libXdmcp before 1.1.2 including used weak entropy to generate session keys. On a multi-user system using xd
6.5MEDIUM
 CVE-2017-2590
all versions
A vulnerability was found in ipa before 4.4. IdM's ca-del, ca-disable, and ca-enable commands did not properly check the user's pe
8.1HIGH
 CVE-2017-12173
all versions
It was found that sssd's sysdb_search_user_by_upn_res() function before 1.16.0 did not sanitize requests when querying its local c
4.3MEDIUM
 CVE-2017-12151
all versions
A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used encryption with the max protocol s
7.4HIGH
 CVE-2017-18344
all versions
The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate
5.5MEDIUM
 CVE-2018-10901
all versions
A flaw was found in Linux kernel's KVM virtualization subsystem. The VMX code does not restore the GDT.LIMIT to the previous host
7.8HIGH
 CVE-2018-2952
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported version
3.7LOW
 CVE-2018-2767
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that
3.1LOW
 CVE-2018-14362
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe
9.8CRITICAL
 CVE-2018-14357
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8CRITICAL
 CVE-2018-14354
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8CRITICAL
 CVE-2018-3693
all versions
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of informatio
5.6MEDIUM
 CVE-2018-13405
all versions
The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended
7.8HIGH
 CVE-2017-2615
all versions
Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue. It coul
5.5MEDIUM
 CVE-2018-10850
all versions
389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds-base handles persistent search,
5.9MEDIUM
 CVE-2018-11806
all versions
m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.
8.2HIGH
 CVE-2018-5185
all versions
Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR < 5
6.5MEDIUM
 CVE-2018-5184
all versions
Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR < 5
7.5HIGH
 CVE-2018-5183
all versions
Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including inval
9.8CRITICAL
 CVE-2018-5178
all versions
A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This
8.1HIGH
 CVE-2018-5170
all versions
It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening
4.3MEDIUM
 CVE-2018-5168
all versions
Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme
5.3MEDIUM
 CVE-2018-5162
all versions
Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbir
7.5HIGH
 CVE-2018-5161
all versions
Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird E
4.3MEDIUM
 CVE-2018-5159
all versions
An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting
9.8CRITICAL
 CVE-2018-5158
all versions
The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected throug
8.8HIGH
 CVE-2018-5157
all versions
Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to intercept messages meant for the viewer.
7.5HIGH
 CVE-2018-5155
all versions
A use-after-free vulnerability can occur while adjusting layout during SVG animations with text paths. This results in a potential
9.8CRITICAL
 CVE-2018-5154
all versions
A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a pot
9.8CRITICAL
 CVE-2018-5150
all versions
Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memo
9.8CRITICAL
 CVE-2018-5146
all versions
An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affe
8.8HIGH
 CVE-2018-5145
all versions
Memory safety bugs were reported in Firefox ESR 52.6. These bugs showed evidence of memory corruption and we presume that with eno
9.8CRITICAL
 CVE-2018-5144
all versions
An integer overflow can occur during conversion of text to some Unicode character sets due to an unchecked length parameter. This
7.3HIGH
 CVE-2018-5131
all versions
Under certain circumstances the "fetch()" API can return transient local copies of resources that were sent with a "no-store" or "
5.9MEDIUM
 CVE-2018-5130
all versions
When packets with a mismatched RTP payload type are sent in WebRTC connections, in some circumstances a potentially exploitable cr
8.8HIGH
 CVE-2018-5129
all versions
A lack of parameter validation on IPC messages results in a potential out-of-bounds write through malformed IPC messages. This can
8.6HIGH
 CVE-2018-5127
all versions
A buffer overflow can occur when manipulating the SVG "animatedPathSegList" through script. This results in a potentially exploita
8.8HIGH
 CVE-2018-5117
all versions
If right-to-left text is used in the addressbar with left-to-right alignment, it is possible in some circumstances to scroll this
5.3MEDIUM
 CVE-2018-5104
all versions
A use-after-free vulnerability can occur during font face manipulation when a font face is freed while still in use, resulting in
9.8CRITICAL
 CVE-2018-5103
all versions
A use-after-free vulnerability can occur during mouse event handling due to issues with multiprocess support. This results in a po
9.8CRITICAL
 CVE-2018-5102
all versions
A use-after-free vulnerability can occur when manipulating HTML media elements with media streams, resulting in a potentially expl
9.8CRITICAL
 CVE-2018-5099
all versions
A use-after-free vulnerability can occur when the widget listener is holding strong references to browser objects that have previo
9.8CRITICAL
 CVE-2018-5098
all versions
A use-after-free vulnerability can occur when form input elements, focus, and selections are manipulated by script content. This r
9.8CRITICAL
 CVE-2018-5097
all versions
A use-after-free vulnerability can occur during XSL transformations when the source document for the transformation is manipulated
9.8CRITICAL
 CVE-2018-5096
all versions
A use-after-free vulnerability can occur while editing events in form elements on a page, resulting in a potentially exploitable c
9.8CRITICAL
 CVE-2018-5095
all versions
An integer overflow vulnerability in the Skia library when allocating memory for edge builders on some systems with at least 8 GB
9.8CRITICAL
 CVE-2018-5091
all versions
A use-after-free vulnerability can occur during WebRTC connections when interacting with the DTMF timers. This results in a potent
9.8CRITICAL
 CVE-2017-7848
all versions
RSS fields can inject new lines into the created email structure, modifying the message body. This vulnerability affects Thunderbi
5.3MEDIUM
 CVE-2017-7846
all versions
It is possible to execute JavaScript in the parsed RSS feed when RSS feed is viewed as a website, e.g. via "View - Feed article -
8.8HIGH
 CVE-2017-7843
all versions
When Private Browsing mode is used, it is possible for a web worker to write persistent data to IndexedDB and fingerprint a user u
7.5HIGH
 CVE-2017-7830
all versions
The Resource Timing API incorrectly revealed navigations in cross-origin iframes. This is a same-origin policy violation and could
6.5MEDIUM
 CVE-2017-7828
all versions
A use-after-free vulnerability can occur when flushing and resizing layout because the "PressShell" object has been freed while st
9.8CRITICAL
 CVE-2017-7826
all versions
Memory safety bugs were reported in Firefox 56 and Firefox ESR 52.4. Some of these bugs showed evidence of memory corruption and w
9.8CRITICAL
 CVE-2017-7823
all versions
The content security policy (CSP) "sandbox" directive did not create a unique origin for the document, causing it to behave as if
5.4MEDIUM
 CVE-2017-7819
all versions
A use-after-free vulnerability can occur in design mode when image objects are resized if objects referenced during the resizing h
9.8CRITICAL
 CVE-2017-7818
all versions
A use-after-free vulnerability can occur when manipulating arrays of Accessible Rich Internet Applications (ARIA) elements within
9.8CRITICAL
 CVE-2017-7814
all versions
File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware
7.8HIGH
 CVE-2017-7810
all versions
Memory safety bugs were reported in Firefox 55 and Firefox ESR 52.3. Some of these bugs showed evidence of memory corruption and w
9.8CRITICAL
 CVE-2017-7809
all versions
A use-after-free vulnerability can occur when an editor DOM node is deleted prematurely during tree traversal while still bound to
9.8CRITICAL
 CVE-2017-7807
all versions
A mechanism that uses AppCache to hijack a URL in a domain using fallback by serving the files from a sub-path on the domain. This
8.1HIGH
 CVE-2017-7803
all versions
When a page's content security policy (CSP) header contains a "sandbox" directive, other directives are ignored. This results in t
7.5HIGH
 CVE-2017-7802
all versions
A use-after-free vulnerability can occur when manipulating the DOM during the resize event of an image element. If these elements
9.8CRITICAL
 CVE-2017-7801
all versions
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the update
9.8CRITICAL
 CVE-2017-7800
all versions
A use-after-free vulnerability can occur in WebSockets when the object holding the connection is freed before the disconnection op
9.8CRITICAL
 CVE-2017-7798
all versions
The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. I
8.8HIGH
 CVE-2017-7793
all versions
A use-after-free vulnerability can occur in the Fetch API when the worker or the associated window are freed when still in use, re
9.8CRITICAL
 CVE-2017-7792
all versions
A buffer overflow will occur when viewing a certificate in the certificate manager if the certificate has an extremely long object
9.8CRITICAL
 CVE-2017-7791
all versions
On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains fo
5.3MEDIUM
 CVE-2017-7787
all versions
Same-origin policy protections can be bypassed on pages with embedded iframes during page reloads, allowing the iframes to access
7.5HIGH
 CVE-2017-7786
all versions
A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially
9.8CRITICAL
 CVE-2017-7785
all versions
A buffer overflow can occur when manipulating Accessible Rich Internet Applications (ARIA) attributes within the DOM. This results
9.8CRITICAL
 CVE-2017-7784
all versions
A use-after-free vulnerability can occur when reading an image observer during frame reconstruction after the observer has been fr
9.8CRITICAL
 CVE-2017-7779
all versions
Memory safety bugs were reported in Firefox 54, Firefox ESR 52.2, and Thunderbird 52.2. Some of these bugs showed evidence of memo
9.8CRITICAL
 CVE-2017-7758
all versions
An out-of-bounds read vulnerability with the Opus encoder when the number of channels in an audio stream changes while the encoder
9.1CRITICAL
 CVE-2017-7754
all versions
An out-of-bounds read in WebGL with a maliciously crafted "ImageInfo" object during WebGL operations. This vulnerability affects F
7.5HIGH
 CVE-2017-7753
all versions
An out-of-bounds read occurs when applying style rules to pseudo-elements, such as ::first-line, using cached style data. This vul
9.1CRITICAL
 CVE-2017-7752
all versions
A use-after-free vulnerability during specific user interactions with the input method editor (IME) in some languages due to how e
8.8HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin