VYPR

Vendor CVEs

Red Hat

All CVEs

3,696 total · sorted by risk
  • CVE-2023-3576MedOct 4, 2023
    risk 0.36cvss 5.5epss 0.00

    A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually…

  • CVE-2023-4066MedSep 27, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the StatefulSet details yaml of AMQ Broker.

  • CVE-2023-4065MedSep 27, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Red Hat AMQ Broker Operator, where it displayed a password defined in ActiveMQArtemisAddress CR, shown in plain text in the Operator Log. This flaw allows an authenticated local attacker to access information outside of their permissions.

  • CVE-2023-32665MedSep 14, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in GLib. GVariant deserialization is vulnerable to an exponential blowup issue where a crafted GVariant can cause excessive processing, leading to denial of service.

  • CVE-2023-32611MedSep 14, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in GLib. GVariant deserialization is vulnerable to a slowdown issue where a crafted GVariant can cause excessive processing, leading to denial of service.

  • CVE-2023-29499MedSep 14, 2023
    risk 0.36cvss 5.5epss 0.01

    A flaw was found in GLib. GVariant deserialization fails to validate that the input conforms to the expected format, leading to denial of service.

  • CVE-2023-4569MedAug 28, 2023
    risk 0.36cvss 5.5epss 0.00

    A memory leak flaw was found in nft_set_catchall_flush in net/netfilter/nf_tables_api.c in the Linux Kernel. This issue may allow a local attacker to cause double-deactivations of catchall elements, which can result in a memory leak.

  • CVE-2023-4042MedAug 23, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

  • CVE-2023-4194MedAug 7, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The problem is that the following…

  • CVE-2023-4133MedAug 3, 2023
    risk 0.36cvss 5.5epss 0.00

    A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the system, causing a denial of…

  • CVE-2023-4132MedAug 3, 2023
    risk 0.36cvss 5.5epss 0.00

    A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition.

  • CVE-2023-38560MedAug 1, 2023
    risk 0.36cvss 5.5epss 0.00

    An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format.

  • CVE-2023-38559MedAug 1, 2023
    risk 0.36cvss 5.5epss 0.00

    A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with gs.

  • CVE-2023-3773MedJul 25, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read of XFRMA_MTIMER_THRESH when parsing netlink attributes, leading to potential…

  • CVE-2023-3772MedJul 25, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer in xfrm_update_ae_params(), leading to a possible kernel crash and denial…

  • CVE-2022-42528MedMar 24, 2023
    risk 0.36cvss 5.5epss 0.00

    In ffa_mrd_prot of shared_mem.c, there is a possible ID due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android…

  • CVE-2023-1055MedFeb 27, 2023
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in RHDS 11 and RHDS 12. While browsing entries LDAP tries to decode the userPassword attribute instead of the userCertificate attribute which could lead into sensitive information leaked. An attacker with a local account where the cockpit-389-ds is running can…

  • CVE-2022-20604MedDec 16, 2022
    risk 0.36cvss 5.5epss 0.00

    In SAECOMM_SetDcnIdForPlmn of SAECOMM_DbManagement.c, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure from a single device with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2022-20591MedDec 16, 2022
    risk 0.36cvss 5.5epss 0.00

    In ppmpu_set of ppmpu.c, there is a possible information disclosure due to a logic error in the code. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android…

  • CVE-2013-4281MedOct 19, 2022
    risk 0.36cvss 5.5epss 0.00

    In Red Hat Openshift 1, weak default permissions are applied to the /etc/openshift/server_priv.pem file on the broker server, which could allow users with local access to the broker to read this file.

  • CVE-2021-3585MedAug 26, 2022
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in openstack-tripleo-heat-templates. Plain passwords from RHSM exist in the logs during OSP13 deployment with subscription-manager.

  • CVE-2020-14379MedAug 16, 2022
    risk 0.36cvss 5.6epss 0.00

    A flaw was found in Red Hat AMQ Broker in a way that a XEE attack can be done via Broker's configuration files, leading to denial of service and information disclosure.

  • CVE-2014-0068MedJun 30, 2022
    risk 0.36cvss 5.5epss 0.00

    It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission.

  • CVE-2021-3681MedApr 18, 2022
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Ansible Galaxy Collections. When collections are built manually, any files in the repository directory that are not explicitly excluded via the ``build_ignore`` list in "galaxy.yml" include files in the ``.tar.gz`` file. This contains sensitive info, such as…

  • CVE-2021-20269MedMar 10, 2022
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in the permissions of a log file created by kexec-tools. This flaw allows a local unprivileged user to read this file and leak kernel internal information from a previous panic. The highest threat from this vulnerability is to confidentiality. This flaw affects…

  • CVE-2021-0938MedOct 25, 2021
    risk 0.36cvss 5.5epss 0.00

    In memzero_explicit of compiler-clang.h, there is a possible bypass of defense in depth due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product:…

  • CVE-2021-0695MedOct 6, 2021
    risk 0.36cvss 5.5epss 0.00

    In get_sock_stat of xt_qtaguid.c, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android…

  • CVE-2020-14335MedJun 2, 2021
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Red Hat Satellite, which allows a privileged attacker to read OMAPI secrets through the ISC DHCP of Smart-Proxy. This flaw allows an attacker to gain control of DHCP records from the network. The highest threat from this vulnerability is to system…

  • CVE-2020-14317MedJun 2, 2021
    risk 0.36cvss 5.5epss 0.00

    It was found that the issue for security flaw CVE-2019-3805 appeared again in a further version of JBoss Enterprise Application Platform - Continuous Delivery (EAP-CD) introducing regression. An attacker could exploit this by modifying the PID file in /var/run/jboss-eap/…

  • CVE-2020-14327MedMay 27, 2021
    risk 0.36cvss 5.5epss 0.00

    A Server-side request forgery (SSRF) flaw was found in Ansible Tower in versions before 3.6.5 and before 3.7.2. Functionality on the Tower server is abused by supplying a URL that could lead to the server processing it. This flaw leads to the connection to internal services or…

  • CVE-2021-3447MedApr 1, 2021
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in several ansible modules, where parameters containing credentials, such as secrets, were being logged in plain-text on managed nodes, as well as being made visible on the controller node when run in verbose mode. These parameters were not protected by the…

  • CVE-2020-10727MedJun 26, 2020
    risk 0.36cvss 5.5epss 0.01

    A flaw was found in ActiveMQ Artemis management API from version 2.7.0 up until 2.12.0, where a user inadvertently stores passwords in plaintext in the Artemis shadow file (etc/artemis-users.properties file) when executing the `resetUsers` operation. A local attacker can use…

  • CVE-2019-14905MedMar 31, 2020
    risk 0.36cvss 5.6epss 0.01

    A vulnerability was found in Ansible Engine versions 2.9.x before 2.9.3, 2.8.x before 2.8.8, 2.7.x before 2.7.16 and earlier, where in Ansible's nxos_file_copy module can be used to copy files to a flash or bootflash on NXOS devices. Malicious code could craft the filename…

  • CVE-2020-1744MedMar 24, 2020
    risk 0.36cvss 5.6epss 0.01

    A flaw was found in keycloak before version 9.0.1. When configuring an Conditional OTP Authentication Flow as a post login flow of an IDP, the failure login events for OTP are not being sent to the brute force protection event queue. So BruteForceProtector does not handle this…

  • CVE-2019-9472MedJan 6, 2020
    risk 0.36cvss 5.5epss 0.00

    In DCRYPTO_equals of compare.c, there is a possible timing attack due to improperly used crypto. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android…

  • CVE-2012-5474MedDec 30, 2019
    risk 0.36cvss 5.5epss 0.00

    The file /etc/openstack-dashboard/local_settings within Red Hat OpenStack Platform 2.0 and RHOS Essex Release (python-django-horizon package before 2012.1.1) is world readable and exposes the secret key value.

  • CVE-2019-19341MedDec 19, 2019
    risk 0.36cvss 5.5epss 0.00

    A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2, where files in '/var/backup/tower' are left world-readable. These files include both the SECRET_KEY and the database backup. Any user with access to the Tower server, and knowledge of when a backup is run, could…

  • CVE-2014-3536MedDec 15, 2019
    risk 0.36cvss 5.5epss 0.00

    CFME (CloudForms Management Engine) 5: RHN account information is logged to top_output.log during registration

  • CVE-2012-5644MedNov 25, 2019
    risk 0.36cvss 5.5epss 0.00

    libuser has information disclosure when moving user's home directory

  • CVE-2019-10207MedNov 25, 2019
    risk 0.36cvss 5.5epss 0.01

    A flaw was found in the Linux kernel's Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call…

  • CVE-2012-6136MedNov 20, 2019
    risk 0.36cvss 5.5epss 0.00

    tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.

  • CVE-2014-8181MedNov 6, 2019
    risk 0.36cvss 5.5epss 0.00

    The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.

  • CVE-2013-4280MedNov 4, 2019
    risk 0.36cvss 5.5epss 0.00

    Insecure temporary file vulnerability in RedHat vsdm 4.9.6.

  • CVE-2013-4518MedNov 4, 2019
    risk 0.36cvss 5.5epss 0.00

    RHUI (Red Hat Update Infrastructure) 2.1.3 has world readable PKI entitlement certificates

  • CVE-2013-4423MedNov 4, 2019
    risk 0.36cvss 5.5epss 0.00

    CloudForms stores user passwords in recoverable format

  • CVE-2019-10194MedJul 11, 2019
    risk 0.36cvss 5.5epss 0.00

    Sensitive passwords used in deployment and configuration of oVirt Metrics, all versions. were found to be insufficiently protected. Passwords could be disclosed in log files (if playbooks are run with -v) or in playbooks stored on Metrics or Bastion hosts.

  • CVE-2019-3887MedApr 9, 2019
    risk 0.36cvss 5.6epss 0.00

    A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via L2 guest, when 'virtualize x2APIC mode' is enabled. A guest could use this flaw…

  • CVE-2017-2621MedJul 27, 2018
    risk 0.36cvss 5.5epss 0.00

    An access-control flaw was found in the OpenStack Orchestration (heat) service before 8.0.0, 6.1.0 and 7.0.2 where a service log directory was improperly made world readable. A malicious system user could exploit this flaw to access sensitive information.

  • CVE-2017-12167MedJul 26, 2018
    risk 0.36cvss 5.5epss 0.00

    It was found in EAP 7 before 7.0.9 that properties based files of the management and the application realm configuration that contain user to role mapping are world readable allowing access to users and roles information to all the users logged in to the system.

  • CVE-2016-3695MedDec 29, 2017
    risk 0.36cvss 5.5epss 0.01

    The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set.

Page 29 of 74