threat
engine
.sh
Back
·
··:··
Home
/
Product
/
redhat enterprise linux server tus
Product
redhat enterprise linux server tus
500 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-5201
all versions
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to i
7.5
HIGH
CVE-2025-13601
all versions
A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer size in the g_escape_uri_string(
7.7
HIGH
CVE-2025-6021
all versions
A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-base
7.5
HIGH
CVE-2025-3155
all versions
A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit
7.4
HIGH
CVE-2025-2784
all versions
A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white
7.0
HIGH
CVE-2024-12085
all versions
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate
7.5
HIGH
CVE-2024-9675
all versions
A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our
7.8
HIGH
CVE-2023-3758
all versions
A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to
7.1
HIGH
CVE-2024-1488
all versions
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modif
8.0
HIGH
CVE-2024-1062
all versions
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars
5.5
MEDIUM
CVE-2023-6536
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5
MEDIUM
CVE-2023-6535
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5
MEDIUM
CVE-2023-6356
all versions
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of craft
6.5
MEDIUM
CVE-2023-5455
all versions
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows
6.5
MEDIUM
CVE-2023-5870
all versions
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replica
2.2
LOW
CVE-2023-5869
all versions
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks
8.8
HIGH
CVE-2023-5868
all versions
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting c
4.3
MEDIUM
CVE-2023-1476
all versions
A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs d
7.0
HIGH
CVE-2023-46848
all versions
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages
8.6
HIGH
CVE-2023-46847
all versions
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of a
8.6
HIGH
CVE-2023-46846
all versions
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Res
9.3
CRITICAL
CVE-2023-3972
all versions
A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of
7.8
HIGH
CVE-2023-5633
all versions
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way m
7.8
HIGH
CVE-2023-4911
all versions
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia
7.8
HIGH
CVE-2023-5157
all versions
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a deni
7.5
HIGH
CVE-2023-4813
all versions
A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resultin
5.9
MEDIUM
CVE-2023-3899
all versions
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bu
7.8
HIGH
CVE-2023-2295
all versions
A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received wi
7.5
HIGH
CVE-2023-2491
all versions
A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" functio
7.8
HIGH
CVE-2023-2203
all versions
A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This fla
8.8
HIGH
CVE-2023-0494
all versions
A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by
7.8
HIGH
CVE-2019-8720
all versions
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitr
8.8
HIGH
CVE-2022-4254
all versions
sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
8.8
HIGH
CVE-2022-2601
all versions
A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating
8.6
HIGH
CVE-2014-0148
all versions
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating B
5.5
MEDIUM
CVE-2014-0147
all versions
Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable t
6.2
MEDIUM
CVE-2014-0144
all versions
QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2 and various other image formats are vulnerable to potential memory corr
8.6
HIGH
CVE-2021-3669
all versions
A flaw was found in the Linux kernel. Measuring usage of the shared memory does not scale with large shared memory segment counts
5.5
MEDIUM
CVE-2021-3975
all versions
A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using mu
6.5
MEDIUM
CVE-2021-31566
all versions
An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and
7.8
HIGH
CVE-2021-23177
all versions
An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of t
7.8
HIGH
CVE-2021-3659
all versions
A NULL pointer dereference flaw was found in the Linux kernel’s IEEE 802.15.4 wireless networking subsystem in the way the user
5.5
MEDIUM
CVE-2021-3697
all versions
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap.
7.0
HIGH
CVE-2021-3696
all versions
A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in
4.5
MEDIUM
CVE-2021-3695
all versions
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to
4.5
MEDIUM
CVE-2022-1227
all versions
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. O
8.8
HIGH
CVE-2022-27649
all versions
A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. A vulnerability was foun
7.5
HIGH
CVE-2022-0435
all versions
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious
8.8
HIGH
CVE-2022-0330
all versions
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicio
7.8
HIGH
CVE-2022-1011
all versions
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a loc
7.8
HIGH
CVE-2022-0847
all versions
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_
7.8
HIGH
CVE-2022-0516
all versions
A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel.
7.8
HIGH
CVE-2021-3733
all versions
There's a flaw in urllib's AbstractBasicAuthHandler class. An attacker who controls a malicious HTTP server that an HTTP client (s
6.5
MEDIUM
CVE-2021-3656
all versions
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual
8.8
HIGH
CVE-2021-3744
all versions
A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allo
5.5
MEDIUM
CVE-2022-0492
all versions
A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw,
7.8
HIGH
CVE-2021-3609
all versions
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsy
7.0
HIGH
CVE-2021-44142
all versions
The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients
8.8
HIGH
CVE-2020-25719
all versions
A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The S
7.2
HIGH
CVE-2020-25717
all versions
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possibl
8.1
HIGH
CVE-2016-2124
all versions
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext passw
5.9
MEDIUM
CVE-2021-3551
all versions
A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installat
7.8
HIGH
CVE-2021-4034
all versions
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed
7.8
HIGH
CVE-2021-3621
all versions
A flaw was found in SSSD, where the sssctl command was vulnerable to shell command injection via the logs-fetch and cache-expire s
8.8
HIGH
CVE-2021-3672
all versions
A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers) can
5.6
MEDIUM
CVE-2021-40438
all versions
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a
9.0
CRITICAL
CVE-2021-20233
all versions
A flaw was found in grub2 in versions prior to 2.06. Setparam_prefix() in the menu rendering code performs a length calculation on
8.2
HIGH
CVE-2021-20225
all versions
A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocate
6.7
MEDIUM
CVE-2020-27779
all versions
A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged
7.5
HIGH
CVE-2020-27749
all versions
A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their c
6.7
MEDIUM
CVE-2020-25647
all versions
A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bound
7.6
HIGH
CVE-2020-25632
all versions
A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependenc
8.2
HIGH
CVE-2020-14372
all versions
A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot i
7.5
HIGH
CVE-2020-9490
all versions
Apache HTTP Server versions 2.4.20 to 2.4.43. A specially crafted value for the 'Cache-Digest' header in a HTTP/2 request would re
7.5
HIGH
CVE-2020-14311
all versions
There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic lin
5.7
MEDIUM
CVE-2020-14310
all versions
There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MA
5.7
MEDIUM
CVE-2020-10711
all versions
A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while i
5.9
MEDIUM
CVE-2013-4535
all versions
The virtqueue_map_sg function in hw/virtio/virtio.c in QEMU before 1.7.2 allows remote attackers to execute arbitrary files via a
8.8
HIGH
CVE-2019-15605
all versions
HTTP request smuggling in Node.js 10, 12, and 13 causes malicious payload delivery when transfer-encoding is malformed
9.8
CRITICAL
CVE-2019-15604
all versions
Improper Certificate Validation in Node.js 10, 12, and 13 causes the process to abort when sending a crafted X.509 certificate
7.5
HIGH
CVE-2014-8141
all versions
Heap-based buffer overflow in the getZip64Data function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbit
7.8
HIGH
CVE-2014-8140
all versions
Heap-based buffer overflow in the test_compr_eb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbi
7.8
HIGH
CVE-2014-8139
all versions
Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrar
7.8
HIGH
CVE-2020-2659
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.7
LOW
CVE-2020-2654
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7
3.7
LOW
CVE-2020-2604
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
8.1
HIGH
CVE-2020-2601
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
6.8
MEDIUM
CVE-2020-2593
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
4.8
MEDIUM
CVE-2020-2583
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7
LOW
CVE-2015-3147
all versions
daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allo
6.5
MEDIUM
CVE-2014-7844
all versions
BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.
7.8
HIGH
CVE-2020-6851
all versions
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k
7.5
HIGH
CVE-2019-17024
all versions
Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of m
8.8
HIGH
CVE-2019-17022
all versions
When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer does not escape < and > chara
6.1
MEDIUM
CVE-2019-17017
all versions
Due to a missing case handling object types, a type confusion vulnerability could occur, resulting in a crash. We presume that wit
8.8
HIGH
CVE-2019-17016
all versions
When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace r
6.1
MEDIUM
CVE-2019-19906
all versions
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via
7.5
HIGH
CVE-2018-1311
all versions
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This
8.1
HIGH
CVE-2019-13734
all versions
Out of bounds write in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corrupt
8.8
HIGH
CVE-2019-5544
all versions
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issu
9.8
CRITICAL
CVE-2019-10216
all versions
In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to by
7.8
HIGH
CVE-2019-14815
all versions
A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Dr
7.8
HIGH
CVE-2018-12207
all versions
Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an aut
6.5
MEDIUM
CVE-2019-11135
all versions
TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enabl
6.5
MEDIUM
CVE-2019-0155
all versions
Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM)
7.8
HIGH
CVE-2017-5333
all versions
Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local
7.8
HIGH
CVE-2017-5332
all versions
The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows
7.8
HIGH
CVE-2019-6470
all versions
There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There
6.5
MEDIUM
CVE-2019-5010
all versions
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specia
7.5
HIGH
CVE-2019-11043
all versions
In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possibl
8.7
HIGH
CVE-2019-14287
all versions
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM
8.8
HIGH
CVE-2019-2999
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc). Supported versions that are affected are Java SE: 7u2
4.7
MEDIUM
CVE-2019-2992
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7
LOW
CVE-2019-2988
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7
LOW
CVE-2019-2983
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7
LOW
CVE-2019-2981
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected a
3.7
LOW
CVE-2019-2978
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.7
LOW
CVE-2019-2973
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected a
3.7
LOW
CVE-2019-2964
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are aff
3.7
LOW
CVE-2019-2962
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7
LOW
CVE-2019-2945
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.1
LOW
CVE-2019-14823
all versions
A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, wher
7.4
HIGH
CVE-2019-16884
all versions
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcon
7.5
HIGH
CVE-2019-14816
all versions
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel,
7.8
HIGH
CVE-2019-14814
all versions
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux k
7.8
HIGH
CVE-2019-14821
all versions
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor im
8.8
HIGH
CVE-2019-14835
all versions
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates
7.8
HIGH
CVE-2019-14813
all versions
A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its p
9.8
CRITICAL
CVE-2019-15718
all versions
In systemd 240, bus_open_system_watch_bind_with_description in shared/bus-util.c (as used by systemd-resolved to connect to the sy
4.4
MEDIUM
CVE-2019-1125
all versions
An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacke
5.6
MEDIUM
CVE-2019-10086
all versions
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker
7.3
HIGH
CVE-2019-9506
all versions
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not pre
8.1
HIGH
CVE-2019-10168
all versions
The virConnectBaselineHypervisorCPU() and virConnectCompareHypervisorCPU() libvirt APIs, 4.x.x before 4.10.1 and 5.x.x before 5.4.
7.8
HIGH
CVE-2019-10167
all versions
The virConnectGetDomainCapabilities() libvirt API, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, accepts an "emulatorbin" a
7.8
HIGH
CVE-2019-10166
all versions
It was discovered that libvirtd, versions 4.x.x before 4.10.1 and 5.x.x before 5.4.1, would permit readonly clients to use the vir
7.8
HIGH
CVE-2018-16871
all versions
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is a
7.5
HIGH
CVE-2019-2879
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2834
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2830
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2826
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are a
4.9
MEDIUM
CVE-2019-2819
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Audit). Supported versions that are a
5.5
MEDIUM
CVE-2019-2815
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2814
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
2.2
LOW
CVE-2019-2812
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2811
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2810
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2808
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2805
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5
MEDIUM
CVE-2019-2803
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2802
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2801
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: FTS). Supported versions that are affected are
4.9
MEDIUM
CVE-2019-2800
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
7.1
HIGH
CVE-2019-2798
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2797
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected
4.2
MEDIUM
CVE-2019-2796
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2795
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Charsets). Supported versions that are affected
6.5
MEDIUM
CVE-2019-2789
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
2.7
LOW
CVE-2019-2785
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2784
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are
4.9
MEDIUM
CVE-2019-2780
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Components / Services). Supported versions that
4.9
MEDIUM
CVE-2019-2778
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
5.4
MEDIUM
CVE-2019-2774
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2757
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2755
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9
MEDIUM
CVE-2019-2752
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.9
MEDIUM
CVE-2019-2740
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: XML). Supported versions that are affected are
6.5
MEDIUM
CVE-2019-2739
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
5.1
MEDIUM
CVE-2019-2738
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Compiling). Supported versions that are affect
3.1
LOW
CVE-2019-9959
all versions
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integ
6.5
MEDIUM
CVE-2019-1010238
all versions
Gnome Pango 1.42 and later is affected by: Buffer Overflow. The impact is: The heap based buffer overflow can be used to get code
9.8
CRITICAL
CVE-2019-13616
all versions
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_bli
8.1
HIGH
CVE-2019-12527
all versions
An issue was discovered in Squid 4.0.23 through 4.7. When checking Basic Authentication with HttpHeader::getAuth, Squid uses a glo
8.8
HIGH
CVE-2019-10193
all versions
A stack-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0
7.2
HIGH
CVE-2019-10192
all versions
A heap-buffer overflow vulnerability was found in the Redis hyperloglog data structure versions 3.x before 3.2.13, 4.x before 4.0.
7.2
HIGH
CVE-2019-13313
all versions
libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-
7.8
HIGH
CVE-2019-12817
all versions
arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be ab
7.0
HIGH
CVE-2019-10126
all versions
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/
9.8
CRITICAL
CVE-2019-10160
all versions
A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting ve
9.8
CRITICAL
CVE-2019-9755
all versions
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g wi
7.0
HIGH
CVE-2019-11356
all versions
The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrar
9.8
CRITICAL
CVE-2019-12450
all versions
file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy ope
9.8
CRITICAL
CVE-2019-0820
all versions
A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings, aka '.NET Framework a
7.5
HIGH
CVE-2019-11833
all versions
fs/ext4/extents.c in the Linux kernel through 5.1.2 does not zero out the unused memory region in the extent tree block, which mig
5.5
MEDIUM
CVE-2019-11884
all versions
The do_hidp_sock_ioctl function in net/bluetooth/hidp/sock.c in the Linux kernel before 5.0.15 allows a local user to obtain poten
3.3
LOW
CVE-2019-11811
all versions
An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports af
7.0
HIGH
CVE-2019-9810
all versions
Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buff
8.8
HIGH
CVE-2019-9792
all versions
The IonMonkey just-in-time (JIT) compiler can leak an internal JS_OPTIMIZED_OUT magic value to the running script during a bailout
9.8
CRITICAL
CVE-2019-9791
all versions
The type inference system allows the compilation of functions that can cause type confusions between arbitrary objects when compil
9.8
CRITICAL
CVE-2019-9788
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 65, Firefox ESR 60.5, and Thunderbird 60.5
9.8
CRITICAL
CVE-2019-2698
all versions
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 7u2
8.1
HIGH
CVE-2019-2695
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2694
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2693
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2691
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are a
4.9
MEDIUM
CVE-2019-2689
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2688
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2687
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2686
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2685
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2684
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: RMI). Supported versions that are affect
5.9
MEDIUM
CVE-2019-2683
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.9
MEDIUM
CVE-2019-2681
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2644
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9
MEDIUM
CVE-2019-2636
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Group Replication Plugin). Supported versions t
4.4
MEDIUM
CVE-2019-2635
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9
MEDIUM
CVE-2019-2634
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
5.1
MEDIUM
CVE-2019-2631
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Information Schema). Supported versions that ar
4.9
MEDIUM
CVE-2019-2630
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4
MEDIUM
CVE-2019-2628
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.2
4.9
MEDIUM
CVE-2019-2627
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2626
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9
MEDIUM
CVE-2019-2625
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2624
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2623
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
5.3
MEDIUM
CVE-2019-2620
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2617
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4
MEDIUM
CVE-2019-2614
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.4
MEDIUM
CVE-2019-2607
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2606
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2602
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are
7.5
HIGH
CVE-2019-2596
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2593
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2592
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: PS). Supported versions that are affected are 5
4.9
MEDIUM
CVE-2019-2589
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2587
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Partition). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2585
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-2584
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2581
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2580
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.1
4.9
MEDIUM
CVE-2019-0223
all versions
While investigating bug PROTON-2014, we discovered that under some circumstances Apache Qpid Proton versions 0.9 to 0.27.0 (C libr
7.4
HIGH
CVE-2019-11459
all versions
The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3.32.0
5.5
MEDIUM
CVE-2019-11235
all versions
FreeRADIUS before 3.0.19 mishandles the "each participant verifies that the received scalar is within a range, and that the receiv
9.8
CRITICAL
CVE-2018-16877
all versions
A flaw was found in the way pacemaker's client-server authentication was implemented in versions up to and including 2.0.0. A loca
7.8
HIGH
CVE-2019-3460
all versions
A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.
6.5
MEDIUM
CVE-2019-3459
all versions
A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.
6.5
MEDIUM
CVE-2017-3139
all versions
A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named
7.5
HIGH
CVE-2019-3887
all versions
A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization e
5.6
MEDIUM
CVE-2019-0757
all versions
A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modi
6.5
MEDIUM
CVE-2019-0211
all versions
In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child pr
7.8
HIGH
CVE-2019-0160
all versions
Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or
9.8
CRITICAL
CVE-2019-3878
all versions
A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is con
8.1
HIGH
CVE-2019-3857
all versions
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHAN
8.8
HIGH
CVE-2019-3856
all versions
An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard p
8.8
HIGH
CVE-2019-3838
all versions
It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially
5.5
MEDIUM
CVE-2019-3835
all versions
It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted
5.5
MEDIUM
CVE-2019-3863
all versions
A flaw was found in libssh2 before 1.8.1 creating a vulnerability on the SSH client side. A server could send a multiple keyboard
7.5
HIGH
CVE-2019-3855
all versions
An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are
8.8
HIGH
CVE-2019-9903
all versions
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find
6.5
MEDIUM
CVE-2019-7222
all versions
The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.
5.5
MEDIUM
CVE-2019-7221
all versions
The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.
7.8
HIGH
CVE-2019-6454
all versions
An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-len
5.5
MEDIUM
CVE-2019-6116
all versions
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote cod
7.8
HIGH
CVE-2019-3816
all versions
Openwsman, versions up to and including 2.6.9, are vulnerable to arbitrary file disclosure because the working directory of openws
7.5
HIGH
CVE-2019-9636
all versions
Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding (with an incorrect netloc)
9.8
CRITICAL
CVE-2018-18498
all versions
A potential vulnerability leading to an integer overflow can occur during buffer size calculations for images when a raw value is
9.8
CRITICAL
CVE-2018-18494
all versions
A same-origin policy violation allowing the theft of cross-origin URL entries when using the Javascript location property to cause
6.5
MEDIUM
CVE-2018-18493
all versions
A buffer overflow can occur in the Skia library during buffer offset calculations with hardware accelerated canvas 2D actions due
9.8
CRITICAL
CVE-2018-18492
all versions
A use-after-free vulnerability can occur after deleting a selection element due to a weak reference to the select element in the o
9.8
CRITICAL
CVE-2018-12405
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 63 and Firefox ESR 60.3. Some of these bug
9.8
CRITICAL
CVE-2018-12396
all versions
A vulnerability where a WebExtension can run content scripts in disallowed contexts following navigation or other events. This all
6.5
MEDIUM
CVE-2018-12393
all versions
A potential vulnerability was found in 32-bit builds where an integer overflow during the conversion of scripts to an internal UTF
7.5
HIGH
CVE-2018-12392
all versions
When manipulating user events in nested loops while opening a document through script, it is possible to trigger a potentially exp
9.8
CRITICAL
CVE-2018-12390
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox 62 and Firefox ESR 60.2. Some of these bug
9.8
CRITICAL
CVE-2018-12389
all versions
Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed eviden
8.8
HIGH
CVE-2019-7164
all versions
SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter.
9.8
CRITICAL
CVE-2019-6974
all versions
In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race
8.1
HIGH
CVE-2019-8308
all versions
Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the apply_extra script sandbox, which allows attackers to
8.2
HIGH
CVE-2019-7665
all versions
In elfutils 0.175, a heap-based buffer over-read was discovered in the function elf32_xlatetom in elf32_xlatetom.c in libelf. A cr
5.5
MEDIUM
CVE-2019-7664
all versions
In elfutils 0.175, a negative-sized memcpy is attempted in elf_cvt_note in libelf/note_xlate.h because of an incorrect overflow ch
5.5
MEDIUM
CVE-2019-7548
all versions
SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled.
7.8
HIGH
CVE-2018-18506
all versions
When proxy auto-detection is enabled, if a web server serves a Proxy Auto-Configuration (PAC) file or if a PAC file is loaded loca
5.9
MEDIUM
CVE-2018-18505
all versions
An earlier fix for an Inter-process Communication (IPC) vulnerability, CVE-2011-3079, added authentication to communication betwee
10.0
CRITICAL
CVE-2018-18500
all versions
A use-after-free vulnerability can occur while parsing an HTML5 stream in concert with custom HTML elements. This results in the s
9.8
CRITICAL
CVE-2019-3813
all versions
Spice, versions 0.5.2 through 0.14.1, are vulnerable to an out-of-bounds read due to an off-by-one error in memslot_get_virt. This
7.5
HIGH
CVE-2019-7310
all versions
In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) al
7.8
HIGH
CVE-2019-6111
all versions
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/
5.9
MEDIUM
CVE-2019-6109
all versions
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-T
6.8
MEDIUM
CVE-2019-7150
all versions
An issue was discovered in elfutils 0.175. A segmentation fault can occur in the function elf64_xlatetom in libelf/elf32_xlatetom.
5.5
MEDIUM
CVE-2017-3145
all versions
BIND was improperly sequencing cleanup operations on upstream recursion fetch contexts, leading in some cases to a use-after-free
7.5
HIGH
CVE-2017-3144
all versions
A vulnerability stemming from failure to properly clean up closed OMAPI connections can lead to exhaustion of the pool of socket d
7.5
HIGH
CVE-2017-3143
all versions
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name
7.5
HIGH
CVE-2017-3142
all versions
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name
5.3
MEDIUM
CVE-2017-3137
all versions
Mistaken assumptions about the ordering of records in the answer section of a response containing CNAME or DNAME resource records
7.5
HIGH
CVE-2017-3136
all versions
A query with a specific set of characteristics could cause a server using DNS64 to encounter an assertion failure and terminate. A
5.9
MEDIUM
CVE-2017-3135
all versions
Under some conditions when using both DNS64 and RPZ to rewrite query responses, query processing can resume in an inconsistent sta
7.5
HIGH
CVE-2019-2539
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection). Supported versions that are affect
4.9
MEDIUM
CVE-2019-2537
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.9
MEDIUM
CVE-2019-2536
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Packaging). Supported versions that are affecte
5.0
MEDIUM
CVE-2019-2535
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected
4.1
MEDIUM
CVE-2019-2534
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
7.1
HIGH
CVE-2019-2533
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). Supported versions tha
6.5
MEDIUM
CVE-2019-2532
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that
4.9
MEDIUM
CVE-2019-2531
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
4.9
MEDIUM
CVE-2019-2530
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2529
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2019-2510
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.2
4.9
MEDIUM
CVE-2019-2503
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that a
6.4
MEDIUM
CVE-2019-2481
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2019-2455
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5
MEDIUM
CVE-2019-2436
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
5.5
MEDIUM
CVE-2019-2434
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected a
6.5
MEDIUM
CVE-2019-2422
all versions
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java
3.1
LOW
CVE-2019-2420
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2018-16865
all versions
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in syst
7.8
HIGH
CVE-2018-16864
all versions
An allocation of memory without limits, that could result in the stack clashing with another memory region, was discovered in syst
7.8
HIGH
CVE-2018-16866
all versions
An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ':'. A loca
3.3
LOW
CVE-2019-6133
all versions
In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore
6.7
MEDIUM
CVE-2018-20685
all versions
In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or
5.3
MEDIUM
CVE-2018-20662
all versions
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h
6.5
MEDIUM
CVE-2018-20650
all versions
A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a chec
6.5
MEDIUM
CVE-2018-15127
all versions
LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of fil
9.8
CRITICAL
CVE-2018-18397
all versions
The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as dem
5.5
MEDIUM
CVE-2018-18356
all versions
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote atta
8.8
HIGH
CVE-2018-18311
all versions
Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write ope
9.8
CRITICAL
CVE-2018-9568
all versions
In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of pr
7.8
HIGH
CVE-2018-16863
all versions
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw
7.3
HIGH
CVE-2018-8787
all versions
FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_
9.8
CRITICAL
CVE-2018-8786
all versions
FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_re
9.8
CRITICAL
CVE-2018-12121
all versions
Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a c
7.5
HIGH
CVE-2018-14646
all versions
The Linux kernel before 4.15-rc8 was found to be vulnerable to a NULL pointer dereference bug in the __netlink_ns_capable() functi
5.5
MEDIUM
CVE-2018-19477
all versions
psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2
7.8
HIGH
CVE-2018-19476
all versions
psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolor
7.8
HIGH
CVE-2018-19475
all versions
psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available
7.8
HIGH
CVE-2018-5407
all versions
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a sid
4.7
MEDIUM
CVE-2018-17466
all versions
Incorrect texture handling in Angle in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to perform an out of bounds m
8.8
HIGH
CVE-2018-19115
all versions
keepalived before 2.0.7 has a heap-based buffer overflow when parsing HTTP status codes resulting in DoS or possibly unspecified o
9.8
CRITICAL
CVE-2018-18897
all versions
An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstra
6.5
MEDIUM
CVE-2016-2125
all versions
It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authenticati
6.5
MEDIUM
CVE-2018-15688
all versions
A buffer overflow vulnerability in the dhcp6 client of systemd allows a malicious dhcp6 server to overwrite heap memory in systemd
8.8
HIGH
CVE-2018-14665
all versions
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when startin
6.6
MEDIUM
CVE-2018-18559
all versions
In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanout_add from setsockopt and bind o
8.1
HIGH
CVE-2018-18284
all versions
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy o
8.6
HIGH
CVE-2018-5188
all versions
Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corru
9.8
CRITICAL
CVE-2018-5156
all versions
A vulnerability can occur when capturing a media stream when the media source type is changed as the capture is occurring. This ca
9.8
CRITICAL
CVE-2018-12387
all versions
A vulnerability where the JavaScript JIT compiler inlines Array.prototype.push with multiple arguments that results in the stack p
9.1
CRITICAL
CVE-2018-12386
all versions
A vulnerability in register allocation in JavaScript can lead to type confusion, allowing for an arbitrary read and write. This le
8.1
HIGH
CVE-2018-12385
all versions
A potentially exploitable crash in TransportSecurityInfo used for SSL can be triggered by data stored in the local cache in the us
7.0
HIGH
CVE-2018-12383
all versions
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still
5.5
MEDIUM
CVE-2018-12379
all versions
When the Mozilla Updater opens a MAR format file which contains a very long item filename, an out-of-bounds write can be triggered
7.8
HIGH
CVE-2018-12378
all versions
A use-after-free vulnerability can occur when an IndexedDB index is deleted while still in use by JavaScript code that is providin
9.8
CRITICAL
CVE-2018-12377
all versions
A use-after-free vulnerability can occur when refresh driver timers are refreshed in some circumstances during shutdown when the t
9.8
CRITICAL
CVE-2018-12376
all versions
Memory safety bugs present in Firefox 61 and Firefox ESR 60.1. Some of these bugs showed evidence of memory corruption and we pres
9.8
CRITICAL
CVE-2018-12366
all versions
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value
6.5
MEDIUM
CVE-2018-12365
all versions
A compromised IPC child process can escape the content sandbox and list the names of arbitrary files on the file system without us
6.5
MEDIUM
CVE-2018-12364
all versions
NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin requests, bypassing CORS by making a same-origin POST that do
8.8
HIGH
CVE-2018-12363
all versions
A use-after-free vulnerability can occur when script uses mutation events to move DOM nodes between documents, resulting in the ol
8.8
HIGH
CVE-2018-12362
all versions
An integer overflow can occur during graphics operations done by the Supplemental Streaming SIMD Extensions 3 (SSSE3) scaler, resu
8.8
HIGH
CVE-2018-12360
all versions
A use-after-free vulnerability can occur when deleting an input element during a mutation event handler triggered by focusing that
8.8
HIGH
CVE-2018-12359
all versions
A buffer overflow can occur when rendering canvas content while adjusting the height and width of the canvas element dynamically,
8.8
HIGH
CVE-2018-18445
all versions
In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF ver
7.8
HIGH
CVE-2018-3214
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound). Supported versions that
5.3
MEDIUM
CVE-2018-3183
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Scripting). Supported versions
9.0
CRITICAL
CVE-2018-3180
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JSSE). Supported versions that
5.6
MEDIUM
CVE-2018-3169
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are af
8.3
HIGH
CVE-2018-3149
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that
8.3
HIGH
CVE-2018-3139
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are
3.1
LOW
CVE-2018-3136
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are a
3.4
LOW
CVE-2018-18073
all versions
Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the sa
6.3
MEDIUM
CVE-2018-17961
all versions
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler
8.6
HIGH
CVE-2018-1000805
all versions
Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server
8.8
HIGH
CVE-2018-17456
all versions
Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.
9.8
CRITICAL
CVE-2018-11784
all versions
When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to
4.3
MEDIUM
CVE-2018-17972
all versions
An issue was discovered in the proc_pid_stack function in fs/proc/base.c in the Linux kernel through 4.18.11. It does not ensure t
5.5
MEDIUM
CVE-2018-14634
all versions
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to S
7.8
HIGH
CVE-2018-14633
all versions
A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authe
7.0
HIGH
CVE-2018-17183
all versions
Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to sup
7.8
HIGH
CVE-2018-14638
all versions
A flaw was found in 389-ds-base before version 1.3.8.4-13. The process ns-slapd crashes in delete_passwdPolicy function when persi
7.5
HIGH
CVE-2018-16802
all versions
An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stac
7.8
HIGH
CVE-2018-5391
all versions
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targetin
7.5
HIGH
CVE-2018-14624
all versions
A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log
7.5
HIGH
CVE-2018-16541
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice
5.5
MEDIUM
CVE-2018-16540
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a u
7.8
HIGH
CVE-2018-16539
all versions
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp
5.5
MEDIUM
CVE-2018-16511
all versions
An issue was discovered in Artifex Ghostscript before 9.24. A type confusion in "ztype" could be used by remote attackers able to
7.8
HIGH
CVE-2018-15911
all versions
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access i
7.8
HIGH
CVE-2018-15909
all versions
In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be used by attackers able to supp
7.8
HIGH
CVE-2015-5160
all versions
libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local
5.5
MEDIUM
CVE-2018-10873
all versions
A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked suff
8.3
HIGH
CVE-2018-5390
all versions
Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for ev
7.5
HIGH
CVE-2016-9583
all versions
An out-of-bounds heap read vulnerability was found in the jpc_pi_nextpcrl() function of jasper before 2.0.6 when processing crafte
5.5
MEDIUM
CVE-2016-8635
all versions
It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. A
5.3
MEDIUM
CVE-2017-18344
all versions
The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate
5.5
MEDIUM
CVE-2018-2952
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported version
3.7
LOW
CVE-2018-2767
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Encryption). Supported versions that
3.1
LOW
CVE-2018-14362
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not forbid characters that may have unsafe
9.8
CRITICAL
CVE-2018-14357
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8
CRITICAL
CVE-2018-14354
all versions
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary c
9.8
CRITICAL
CVE-2018-3693
all versions
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of informatio
5.6
MEDIUM
CVE-2018-13405
all versions
The inode_init_owner function in fs/inode.c in the Linux kernel through 3.16 allows local users to create files with an unintended
7.8
HIGH
CVE-2018-10850
all versions
389-ds-base before versions 1.4.0.10, 1.3.8.3 is vulnerable to a race condition in the way 389-ds-base handles persistent search,
5.9
MEDIUM
CVE-2018-11806
all versions
m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.
8.2
HIGH
CVE-2018-5185
all versions
Plaintext of decrypted emails can leak through by user submitting an embedded form. This vulnerability affects Thunderbird ESR < 5
6.5
MEDIUM
CVE-2018-5184
all versions
Using remote content in encrypted messages can lead to the disclosure of plaintext. This vulnerability affects Thunderbird ESR < 5
7.5
HIGH
CVE-2018-5183
all versions
Mozilla developers backported selected changes in the Skia library. These changes correct memory corruption issues including inval
9.8
CRITICAL
CVE-2018-5178
all versions
A buffer overflow was found during UTF8 to Unicode string conversion within JavaScript with extremely large amounts of data. This
8.1
HIGH
CVE-2018-5170
all versions
It is possible to spoof the filename of an attachment and display an arbitrary attachment name. This could lead to a user opening
4.3
MEDIUM
CVE-2018-5168
all versions
Sites can bypass security checks on permissions to install lightweight themes by manipulating the "baseURI" property of the theme
5.3
MEDIUM
CVE-2018-5162
all versions
Plaintext of decrypted emails can leak through the src attribute of remote images, or links. This vulnerability affects Thunderbir
7.5
HIGH
CVE-2018-5161
all versions
Crafted message headers can cause a Thunderbird process to hang on receiving the message. This vulnerability affects Thunderbird E
4.3
MEDIUM
CVE-2018-5159
all versions
An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting
9.8
CRITICAL
CVE-2018-5158
all versions
The PDF viewer does not sufficiently sanitize PostScript calculator functions, allowing malicious JavaScript to be injected throug
8.8
HIGH
CVE-2018-5157
all versions
Same-origin protections for the PDF viewer can be bypassed, allowing a malicious site to intercept messages meant for the viewer.
7.5
HIGH
CVE-2018-5155
all versions
A use-after-free vulnerability can occur while adjusting layout during SVG animations with text paths. This results in a potential
9.8
CRITICAL
CVE-2018-5154
all versions
A use-after-free vulnerability can occur while enumerating attributes during SVG animations with clip paths. This results in a pot
9.8
CRITICAL
CVE-2018-5150
all versions
Memory safety bugs were reported in Firefox 59, Firefox ESR 52.7, and Thunderbird 52.7. Some of these bugs showed evidence of memo
9.8
CRITICAL
CVE-2018-5146
all versions
An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affe
8.8
HIGH
CVE-2018-5145
all versions
Memory safety bugs were reported in Firefox ESR 52.6. These bugs showed evidence of memory corruption and we presume that with eno
9.8
CRITICAL
CVE-2018-12020
all versions
mainproc.c in GnuPG before 2.2.8 mishandles the original filename during decryption and verification actions, which allows remote
7.5
HIGH
CVE-2018-1000199
all versions
The Linux Kernel version 3.18 contains a dangerous feature vulnerability in modify_user_hw_breakpoint() that can result in crash a
5.5
MEDIUM
CVE-2018-1126
all versions
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow
4.8
MEDIUM
CVE-2018-3639
all versions
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all
5.5
MEDIUM
CVE-2018-1087
all versions
kernel KVM before versions kernel 4.16, kernel 4.16-rc7, kernel 4.17-rc1, kernel 4.17-rc2 and kernel 4.17-rc3 is vulnerable to a f
8.0
HIGH
CVE-2018-10675
all versions
The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial of service
7.8
HIGH
CVE-2018-10393
all versions
bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read.
7.5
HIGH
CVE-2018-10392
all versions
mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers
8.8
HIGH
CVE-2017-2885
all versions
An exploitable stack based buffer overflow vulnerability exists in the GNOME libsoup 2.58. A specially crafted HTTP request can ca
9.8
CRITICAL
CVE-2018-1106
all versions
An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to ins
5.5
MEDIUM
CVE-2017-17833
all versions
OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a de
9.8
CRITICAL
CVE-2018-2819
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.5.5
6.5
MEDIUM
CVE-2018-2817
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
6.5
MEDIUM
CVE-2018-2815
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Serialization). Supported versi
5.3
MEDIUM
CVE-2018-2814
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported versions that are af
8.3
HIGH
CVE-2018-2813
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
4.3
MEDIUM
CVE-2018-2800
all versions
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: RMI). Supported versions that are affected are Ja
4.2
MEDIUM
CVE-2018-2799
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JAXP). Supported versions that
5.3
MEDIUM
CVE-2018-2798
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: AWT). Supported versions that a
5.3
MEDIUM
CVE-2018-2797
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that a
5.3
MEDIUM
CVE-2018-2796
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Concurrency). Supported version
5.3
MEDIUM
CVE-2018-2795
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions t
5.3
MEDIUM
CVE-2018-2794
all versions
Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions that are affected a
7.7
HIGH
CVE-2018-2790
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Security). Supported versions that are a
3.1
LOW
CVE-2018-2781
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
4.9
MEDIUM
CVE-2018-2771
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Locking). Supported versions that are affected
4.4
MEDIUM
CVE-2018-2761
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected
5.9
MEDIUM
CVE-2018-2755
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affec
7.7
HIGH
CVE-2018-10194
all versions
The set_text_distance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does not
7.8
HIGH
CVE-2018-1000156
all versions
GNU Patch version 2.7.6 contains an input validation vulnerability when processing patch files, specifically the EDITOR_PROGRAM in
7.8
HIGH
CVE-2018-7566
all versions
The Linux kernel 4.15 has a Buffer Overflow via an SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl write operation to /dev/snd/seq by a loca
7.8
HIGH
CVE-2018-1312
all versions
In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks
9.8
CRITICAL
CVE-2018-1000140
all versions
rsyslog librelp version 1.2.14 and earlier contains a Buffer Overflow vulnerability in the checking of x509 certificates from a pe
9.8
CRITICAL
CVE-2018-8088
all versions
org.slf4j.ext.EventData in the slf4j-ext module in QOS.CH SLF4J before 1.8.0-beta2 allows remote attackers to bypass intended acce
9.8
CRITICAL
CVE-2018-1068
all versions
A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user
6.7
MEDIUM
CVE-2018-7750
all versions
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.
9.8
CRITICAL
CVE-2018-7858
all versions
Quick Emulator (aka QEMU), when built with the Cirrus CLGD 54xx VGA Emulator support, allows local guest OS privileged users to ca
5.5
MEDIUM
CVE-2016-9600
all versions
JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image file
6.5
MEDIUM
CVE-2014-8130
all versions
The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote attackers to cause a deni
6.5
MEDIUM
CVE-2014-8129
all versions
LibTIFF 4.0.3 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact
8.8
HIGH
CVE-2018-7550
all versions
The load_multiboot function in hw/i386/multiboot.c in Quick Emulator (aka QEMU) allows local guest OS users to execute arbitrary c
8.8
HIGH
CVE-2018-7225
all versions
An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.l
9.8
CRITICAL
CVE-2018-5379
all versions
The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, contai
7.5
HIGH
CVE-2018-1049
all versions
In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may n
5.9
MEDIUM
CVE-2018-6927
all versions
The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service
7.8
HIGH
CVE-2018-6871
all versions
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document,
9.8
CRITICAL
CVE-2018-6574
all versions
Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during
7.8
HIGH
CVE-2018-6560
all versions
In dbus-proxy/flatpak-proxy.c in Flatpak before 0.8.9, and 0.9.x and 0.10.x before 0.10.3, crafted D-Bus messages to the host can
8.8
HIGH
CVE-2018-1000001
all versions
In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destinat
7.8
HIGH
CVE-2018-5750
all versions
The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive
5.5
MEDIUM
CVE-2018-5748
all versions
qemu/qemu_monitor.c in libvirt allows attackers to cause a denial of service (memory consumption) via a large QEMU reply.
7.5
HIGH
CVE-2018-5683
all versions
The vga_draw_text function in Qemu allows local OS guest privileged users to cause a denial of service (out-of-bounds read and QEM
6.0
MEDIUM
CVE-2018-5950
all versions
Cross-site scripting (XSS) vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web sc
6.1
MEDIUM
CVE-2018-2678
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that
4.3
MEDIUM
CVE-2018-2677
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affect
4.3
MEDIUM
CVE-2018-2668
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2018-2665
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2018-2663
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions
4.3
MEDIUM
CVE-2018-2641
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT). Supported versions that are affect
6.1
MEDIUM
CVE-2018-2640
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2018-2637
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JMX). Supported versions that a
7.4
HIGH
CVE-2018-2634
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS). Supported versions that are affec
6.8
MEDIUM
CVE-2018-2633
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that
8.3
HIGH
CVE-2018-2629
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JGSS). Supported versions that
5.3
MEDIUM
CVE-2018-2622
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
6.5
MEDIUM
CVE-2018-2618
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JCE). Supported versions that a
5.9
MEDIUM
CVE-2018-2603
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions
5.3
MEDIUM
CVE-2018-2602
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: I18n). Supported versions that are affec
4.5
MEDIUM
CVE-2018-2599
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: JNDI). Supported versions that
4.8
MEDIUM
CVE-2018-2588
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: LDAP). Supported versions that
4.3
MEDIUM
CVE-2018-2579
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Libraries). Supported versions
3.7
LOW
CVE-2018-2562
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Partition). Supported versions that are affect
7.1
HIGH
CVE-2018-5345
all versions
A stack-based buffer overflow within GNOME gcab through 0.7.4 can be exploited by malicious attackers to cause a crash or, potenti
7.8
HIGH
CVE-2017-15129
all versions
A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_ne
4.7
MEDIUM
CVE-2017-18017
all versions
The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows re
9.8
CRITICAL
CVE-2017-17405
all versions
Ruby before 2.4.3 allows Net::FTP command injection. Net::FTP#get, getbinaryfile, gettextfile, put, putbinaryfile, and puttextfile
8.8
HIGH
CVE-2017-1000407
all versions
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be tr
7.4
HIGH
CVE-2017-1000410
all versions
The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - Conf
7.5
HIGH
CVE-2017-15121
all versions
A non-privileged user is able to mount a fuse filesystem on RHEL 6 or 7 and crash a system if an application punches a hole in a f
5.5
MEDIUM
CVE-2017-3157
all versions
By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows read
5.5
MEDIUM
CVE-2016-8610
all versions
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol define
7.5
HIGH
CVE-2015-7529
all versions
sosreport in SoS 3.x allows local users to obtain sensitive information from sosreport files or gain privileges via a symlink atta
7.8
HIGH
CVE-2017-16541
all versions
Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to bypass the intended anonymity feature and discover a client
6.5
MEDIUM
CVE-2017-15906
all versions
The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, whic
5.3
MEDIUM
CVE-2017-12613
all versions
When apr_time_exp
() or apr_os_exp_time
() functions are invoked with an invalid month field value in Apache Portable Runtime APR
7.1
HIGH
CVE-2017-10388
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are
7.5
HIGH
CVE-2017-10384
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are
6.5
MEDIUM
CVE-2017-10379
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Client programs). Supported versions that are affected
6.5
MEDIUM
CVE-2017-10378
all versions
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affecte
6.5
MEDIUM
CVE-2017-10357
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Serialization). Supported versions that
5.3
MEDIUM
CVE-2017-10356
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Security). Supported versions t
6.2
MEDIUM
CVE-2017-10355
all versions
Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Networking). Supported versions
5.3
MEDIUM
CVE-2017-10350
all versions
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAX-WS). Supported versions that are aff
5.3
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin