CVE-2025-3155

all versions

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerabilit

7.4HIGH

CVE-2025-2784

all versions

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_white

7.0HIGH

CVE-2025-1756

all versions

mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a u

7.5HIGH

CVE-2025-1755

all versions

MongoDB Compass may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized action

7.5HIGH

CVE-2024-12088

all versions

A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link dest

6.5MEDIUM

CVE-2024-12087

all versions

A path traversal vulnerability exists in rsync. It stems from behavior enabled by the --inc-recursive option, a default-enabled

6.5MEDIUM

CVE-2024-12085

all versions

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate

7.5HIGH

CVE-2024-9675

all versions

A vulnerability was found in Buildah. Cache mounts do not properly validate that user-specified paths for the cache are within our

7.8HIGH

CVE-2024-3183

all versions

A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is d

8.1HIGH

CVE-2023-3758

all versions

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to

7.1HIGH

CVE-2022-24809

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-only

6.5MEDIUM

CVE-2022-24808

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write

6.5MEDIUM

CVE-2022-24807

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a S

6.5MEDIUM

CVE-2022-24806

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a user with read-write

6.5MEDIUM

CVE-2022-24805

all versions

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a buffer overflow in t

6.5MEDIUM

CVE-2024-1062

all versions

A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars

5.5MEDIUM

CVE-2024-0229

all versions

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab

7.8HIGH

CVE-2023-5455

all versions

A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows

6.5MEDIUM

CVE-2023-3972

all versions

A vulnerability was found in insights-client. This security issue occurs because of insecure file operations or unsafe handling of

7.8HIGH

CVE-2023-4911

all versions

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia

7.8HIGH

CVE-2023-3899

all versions

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bu

7.8HIGH

CVE-2021-40438

all versions

A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a

9.0CRITICAL

CVE-2020-14355

all versions

Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before

6.6MEDIUM

CVE-2019-6470

all versions

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There

6.5MEDIUM

CVE-2019-0211

all versions

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child pr

7.8HIGH