VYPR

Vendor CVEs

Red Hat

All CVEs

3,690 total · sorted by risk
  • CVE-2023-7216MedFeb 5, 2024
    risk 0.35cvss 5.3epss 0.01

    A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated attacker to trick a user into opening a specially crafted archive. During the extraction process, the archiver could follow symlinks outside of the intended directory,…

  • CVE-2023-6780MedJan 31, 2024
    risk 0.35cvss 5.3epss 0.03

    An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a very long message, leading to an incorrect calculation of the buffer size…

  • CVE-2023-6476MedJan 9, 2024
    risk 0.35cvss 6.5epss 0.01

    A flaw was found in CRI-O that involves an experimental annotation leading to a container being unconfined. This may allow a pod to specify and get any amount of memory/cpu, circumventing the kubernetes scheduler and potentially resulting in a denial of service in the node.

  • CVE-2023-3628MedDec 18, 2023
    risk 0.35cvss 6.5epss 0.01

    A flaw was found in Infinispan's REST. Bulk read endpoints do not properly evaluate user permissions for the operation. This issue could allow an authenticated user to access information outside of their intended permissions.

  • CVE-2023-5871MedNov 27, 2023
    risk 0.35cvss 5.3epss 0.01

    A flaw was found in libnbd, due to a malicious Network Block Device (NBD), a protocol for accessing Block Devices such as hard disks over a Network. This issue may allow a malicious NBD server to cause a Denial of Service.

  • CVE-2023-4061MedNov 8, 2023
    risk 0.35cvss 6.5epss 0.01

    A flaw was found in wildfly-core. A management user could use the resolve-expression in the HAL Interface to read possible sensitive information from the Wildfly system. This issue could allow a malicious user to access the system and obtain possible sensitive information from…

  • CVE-2023-5625MedNov 1, 2023
    risk 0.35cvss 5.3epss 0.01

    A regression was introduced in the Red Hat build of python-eventlet due to a change in the patch application strategy, resulting in a patch for CVE-2021-21419 not being applied for all builds of all products.

  • CVE-2023-5215MedSep 28, 2023
    risk 0.35cvss 5.3epss 0.01

    A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other unintended behavior for NBD clients that doesn't treat the return value of the…

  • CVE-2023-38201MedAug 25, 2023
    risk 0.35cvss 6.5epss 0.00

    A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake agent is added to the verifier…

  • CVE-2023-34968MedJul 20, 2023
    risk 0.35cvss 5.3epss 0.01

    A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search queries. This flaw allows a malicious client or an attacker with a targeted RPC…

  • CVE-2023-0105MedJan 13, 2023
    risk 0.35cvss 6.5epss 0.01

    A flaw was found in Keycloak. This flaw allows impersonation and lockout due to the email trust not being handled correctly in Keycloak. An attacker can shadow other users with the same email and lockout or impersonate them.

  • CVE-2021-3442MedAug 22, 2022
    risk 0.35cvss 5.4epss 0.00

    A flaw was found in the Red Hat OpenShift API Management product. User input is not validated allowing an authenticated user to inject scripts into some text boxes leading to a XSS attack. The highest threat from this vulnerability is to data confidentiality.

  • CVE-2014-3650MedJul 1, 2022
    risk 0.35cvss 5.4epss 0.01

    Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. A remote attacker could use these flaws to compromise the application with specially crafted input.

  • CVE-2022-31248MedJun 22, 2022
    risk 0.35cvss 5.3epss 0.01

    A Observable Response Discrepancy vulnerability in spacewalk-java of SUSE Manager Server 4.1, SUSE Manager Server 4.2 allows remote attackers to discover valid usernames. This issue affects: SUSE Manager Server 4.1 spacewalk-java versions prior to 4.1.46-1. SUSE Manager Server…

  • CVE-2022-0866MedMay 10, 2022
    risk 0.35cvss 5.3epss 0.01

    This is a concurrency issue that can result in the wrong caller principal being returned from the session context of an EJB that is configured with a RunAs principal. In particular, the org.jboss.as.ejb3.component.EJBComponent class has an incomingRunAsIdentity field. This field…

  • CVE-2021-44043MedDec 14, 2021
    risk 0.35cvss 5.4epss 0.00

    An issue was discovered in UiPath App Studio 21.4.4. There is a persistent XSS vulnerability in the file-upload functionality for uploading icons when attempting to create new Apps. An attacker with minimal privileges in the application can build their own App and upload a…

  • CVE-2020-25634MedMay 26, 2021
    risk 0.35cvss 5.4epss 0.01

    A flaw was found in Red Hat 3scale’s API docs URL, where it is accessible without credentials. This flaw allows an attacker to view sensitive information or modify service APIs. Versions before 3scale-2.10.0-ER1 are affected.

  • CVE-2021-3531MedMay 18, 2021
    risk 0.35cvss 5.3epss 0.02

    A flaw was found in the Red Hat Ceph Storage RGW in versions before 14.2.21. When processing a GET Request for a swift URL that ends with two slashes it can cause the rgw to crash, resulting in a denial of service. The greatest threat to the system is of availability.

  • CVE-2019-3897MedMar 16, 2021
    risk 0.35cvss 5.3epss 0.01

    It has been discovered in redhat-certification that any unauthorized user may download any file under /var/www/rhcert, provided they know its name. Red Hat Certification 6 and 7 is vulnerable to this issue.

  • CVE-2020-25680MedJan 7, 2021
    risk 0.35cvss 5.4epss 0.00

    A flaw was found in JBCS httpd in version 2.4.37 SP3, where it uses a back-end worker SSL certificate with the keystore file's ID is 'unknown'. The validation of the certificate whether CN and hostname are matching stopped working and allow connecting to the back-end work. The…

  • CVE-2020-25662MedNov 5, 2020
    risk 0.35cvss 5.3epss 0.01

    A Red Hat only CVE-2020-12352 regression issue was found in the way the Linux kernel's Bluetooth stack implementation handled the initialization of stack memory when handling certain AMP packets. This flaw allows a remote attacker in an adjacent range to leak small portions of…

  • CVE-2020-1710MedSep 16, 2020
    risk 0.35cvss 5.3epss 0.01

    The issue appears to be that JBoss EAP 6.4.21 does not parse the field-name in accordance to RFC7230[1] as it returns a 200 instead of a 400.

  • CVE-2020-10777MedAug 11, 2020
    risk 0.35cvss 5.4epss 0.01

    A cross-site scripting flaw was found in Report Menu feature of Red Hat CloudForms 4.7 and 5. An attacker could use this flaw to execute a stored XSS attack on an application administrator using CloudForms.

  • CVE-2020-10753MedJun 26, 2020
    risk 0.35cvss 5.4epss 0.02

    A flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers via a CORS ExposeHeader tag. The newline character in the ExposeHeader tag in the CORS configuration file generates a header injection in the…

  • CVE-2020-10755MedJun 10, 2020
    risk 0.35cvss 6.5epss 0.01

    An insecure-credentials flaw was found in all openstack-cinder versions before openstack-cinder 14.1.0, all openstack-cinder 15.x.x versions before openstack-cinder 15.2.0 and all openstack-cinder 16.x.x versions before openstack-cinder 16.1.0. When using openstack-cinder with…

  • CVE-2020-1758MedMay 15, 2020
    risk 0.35cvss 5.3epss 0.01

    A flaw was found in Keycloak in versions before 10.0.0, where it does not perform the TLS hostname verification while sending emails using the SMTP server. This flaw allows an attacker to perform a man-in-the-middle (MITM) attack.

  • CVE-2015-3147MedJan 14, 2020
    risk 0.35cvss 6.5epss 0.01

    daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/spool/abrt or (2) /var/tmp/abrt.

  • CVE-2019-14864MedJan 2, 2020
    risk 0.35cvss 6.5epss 0.02

    Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it to True when Sumologic and Splunk callback plugins are used send tasks results events to collectors. This would discloses and collects any…

  • CVE-2019-19342MedDec 19, 2019
    risk 0.35cvss 5.3epss 0.01

    A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.4, when /websocket is requested and the password contains the '#' character. This request would cause a socket error in RabbitMQ when parsing the password and an HTTP error code 500 and partial…

  • CVE-2019-14849MedDec 12, 2019
    risk 0.35cvss 5.4epss 0.01

    A vulnerability was found in 3scale before version 2.6, did not set the HTTPOnly attribute on the user session cookie. An attacker could use this to conduct cross site scripting attacks and gain access to unauthorized information.

  • CVE-2011-3606MedNov 26, 2019
    risk 0.35cvss 5.4epss 0.01

    A DOM based cross-site scripting flaw was found in the JBoss Application Server 7 before 7.1.0 Beta 1 administration console. A remote attacker could provide a specially-crafted web page and trick the valid JBoss AS user, with the administrator privilege, to visit it, which…

  • CVE-2019-10217MedNov 25, 2019
    risk 0.35cvss 6.5epss 0.02

    A flaw was found in ansible 2.8.0 before 2.8.4. Fields managing sensitive data should be set as such by no_log feature. Some of these fields in GCP modules are not set properly. service_account_contents() which is common class for all gcp modules is not setting no_log to True.…

  • CVE-2019-10206MedNov 22, 2019
    risk 0.35cvss 6.5epss 0.01

    ansible-playbook -k and ansible cli tools, all versions 2.8.x before 2.8.4, all 2.7.x before 2.7.13 and all 2.6.x before 2.6.19, prompt passwords by expanding them from templates as they could contain special characters. Passwords should be wrapped to prevent templates trigger…

  • CVE-2018-10854MedNov 22, 2019
    risk 0.35cvss 5.4epss 0.01

    cloudforms version, cloudforms 5.8 and cloudforms 5.9, is vulnerable to a cross-site-scripting. A flaw was found in CloudForms's v2v infrastructure mapping delete feature. A stored cross-site scripting due to improper sanitization of user input in Name field.

  • CVE-2019-18212MedOct 23, 2019
    risk 0.35cvss 6.5epss 0.03

    XMLLanguageService.java in XML Language Server (aka lsp4xml) before 0.9.1, as used in Red Hat XML Language Support (aka vscode-xml) before 0.9.1 for Visual Studio and other products, allows a remote attacker to write to arbitrary files via Directory Traversal.

  • CVE-2019-3884MedAug 1, 2019
    risk 0.35cvss 5.4epss 0.01

    A vulnerability exists in the garbage collection mechanism of atomic-openshift. An attacker able spoof the UUID of a valid object from another namespace is able to delete children of those objects. Versions 3.6, 3.7, 3.8, 3.9, 3.10, 3.11 and 4.1 are affected.

  • CVE-2019-3889MedJul 11, 2019
    risk 0.35cvss 5.4epss 0.01

    A reflected XSS vulnerability exists in authorization flow of OpenShift Container Platform versions: openshift-online-3, openshift-enterprise-3.4 through 3.7 and openshift-enterprise-3.9 through 3.11. An attacker could use this flaw to steal authorization data by getting them to…

  • CVE-2017-15123MedJun 12, 2019
    risk 0.35cvss 5.3epss 0.01

    A flaw was found in the CloudForms web interface, versions 5.8 - 5.10, where the RSS feed URLs are not properly restricted to authenticated users only. An attacker could use this flaw to view potentially sensitive information from CloudForms including data such as newly created…

  • CVE-2018-14642MedSep 18, 2018
    risk 0.35cvss 5.3epss 0.02

    An information leak vulnerability was found in Undertow. If all headers are not written out in the first write() call then the code that handles flushing the buffer will always write out the full contents of the writevBuffer buffer, which may contain data from previous requests.

  • CVE-2017-7513MedAug 22, 2018
    risk 0.35cvss 5.4epss 0.00

    It was found that Satellite 5 configured with SSL/TLS for the PostgreSQL backend failed to correctly validate X.509 server certificate host name fields. A man-in-the-middle attacker could use this flaw to spoof a PostgreSQL server using a specially crafted X.509 certificate.

  • CVE-2016-9598MedAug 16, 2018
    risk 0.35cvss 6.5epss 0.01

    libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted XML document. NOTE: this vulnerability exists because of a missing fix for CVE-2016-4483.

  • CVE-2016-9596MedAug 16, 2018
    risk 0.35cvss 6.5epss 0.01

    libxml2, as used in Red Hat JBoss Core Services and when in recovery mode, allows context-dependent attackers to cause a denial of service (stack consumption) via a crafted XML document. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-3627.

  • CVE-2018-10864MedAug 13, 2018
    risk 0.35cvss 5.3epss 0.01

    An uncontrolled resource consumption flaw has been discovered in redhat-certification in the way documents are loaded. A remote attacker may provide an existing but invalid XML file which would be opened and never closed, possibly producing a Denial of Service.

  • CVE-2016-8653MedAug 1, 2018
    risk 0.35cvss 5.3epss 0.02

    It was found that the JMX endpoint of Red Hat JBoss Fuse 6, and Red Hat A-MQ 6 deserializes the credentials passed to it. An attacker could use this flaw to launch a denial of service attack.

  • CVE-2016-8608MedAug 1, 2018
    risk 0.35cvss 5.4epss 0.01

    JBoss BRMS 6 and BPM Suite 6 are vulnerable to a stored XSS via business process editor. The flaw is due to an incomplete fix for CVE-2016-5398. Remote, authenticated attackers that have privileges to create business processes can store scripts in them, which are not properly…

  • CVE-2017-7543MedJul 26, 2018
    risk 0.35cvss 5.3epss 0.02

    A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and 10.x before 10.0.2-1.1, where, following a minor overcloud update, neutron security groups were disabled. Specifically, the following were reset to 0:…

  • CVE-2016-9590MedApr 26, 2018
    risk 0.35cvss 6.5epss 0.01

    puppet-swift before versions 8.2.1, 9.4.4 is vulnerable to an information-disclosure in Red Hat OpenStack Platform director's installation of Object Storage (swift). During installation, the Puppet script responsible for deploying the service incorrectly removes and recreates…

  • CVE-2017-7534MedApr 11, 2018
    risk 0.35cvss 5.4epss 0.01

    OpenShift Enterprise version 3.x is vulnerable to a stored XSS via the log viewer for pods. The flaw is due to lack of sanitation of user input, specifically terminal escape characters, and the creation of clickable links automatically when viewing the log files for a pod.

  • CVE-2016-9585MedMar 9, 2018
    risk 0.35cvss 5.3epss 0.01

    Red Hat JBoss EAP version 5 is vulnerable to a deserialization of untrusted data in the JMX endpoint when deserializes the credentials passed to it. An attacker could exploit this vulnerability resulting in a denial of service attack.

  • CVE-2017-5107MedOct 27, 2017
    risk 0.35cvss 5.3epss 0.02

    A timing attack in SVG rendering in Google Chrome prior to 60.0.3112.78 for Linux, Windows, and Mac allowed a remote attacker to extract pixel values from a cross-origin page being iframe'd via a crafted HTML page.

Page 31 of 74