VYPR

Vendor CVEs

Red Hat

All CVEs

3,692 total · sorted by risk
  • CVE-2023-3355MedJun 28, 2023
    risk 0.00cvss 4.7epss 0.00

    A NULL pointer dereference flaw was found in the Linux kernel's drivers/gpu/drm/msm/msm_gem_submit.c code in the submit_lookup_cmds function, which fails because it lacks a check of the return value of kmalloc(). This issue allows a local user to crash the system.

  • CVE-2023-2700MedMay 15, 2023
    risk 0.00cvss 5.5epss 0.00

    A vulnerability was found in libvirt. This security flaw ouccers due to repeatedly querying an SR-IOV PCI device's capabilities that exposes a memory leak caused by a failure to free the virPCIVirtualFunction array within the parent struct's g_autoptr cleanup.

  • CVE-2022-1902HigSep 1, 2022
    risk 0.00cvss 8.8epss 0.01

    A flaw was found in the Red Hat Advanced Cluster Security for Kubernetes. Notifier secrets were not properly sanitized in the GraphQL API. This flaw allows authenticated ACS users to retrieve Notifiers from the GraphQL API, revealing secrets that can escalate their privileges.

  • CVE-2022-1319HigAug 31, 2022
    risk 0.00cvss 7.5epss 0.01

    A flaw was found in Undertow. For an AJP 400 response, EAP 7 is improperly sending two response packets, and those packets have the reuse flag set even though JBoss EAP closes the connection. A failure occurs when the connection is reused after a 400 by CPING since it reads in…

  • CVE-2021-3979MedAug 25, 2022
    risk 0.00cvss 6.5epss 0.00

    A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted…

  • CVE-2021-4142MedAug 24, 2022
    risk 0.00cvss 5.5epss 0.00

    The Candlepin component of Red Hat Satellite was affected by an improper authentication flaw. Few factors could allow an attacker to use the SCA (simple content access) certificate for authentication with Candlepin.

  • CVE-2021-4125HigAug 24, 2022
    risk 0.00cvss 8.1epss 0.01

    It was found that the original fix for log4j CVE-2021-44228 and CVE-2021-45046 in the OpenShift metering hive containers was incomplete, as not all JndiLookup.class files were removed. This CVE only applies to the OpenShift Metering hive container images, shipped in OpenShift…

  • CVE-2021-3975MedAug 23, 2022
    risk 0.00cvss 6.5epss 0.01

    A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the…

  • CVE-2020-27836CriAug 22, 2022
    risk 0.00cvss 9.8epss 0.01

    A flaw was found in cluster-ingress-operator. A change to how the router-default service allows only certain IP source ranges could allow an attacker to access resources that would otherwise be restricted to specified IP ranges. The highest threat from this vulnerability is to…

  • CVE-2021-4076HigMar 2, 2022
    risk 0.00cvss 7.5epss 0.02

    A flaw exists in tang, a network-based cryptographic binding server, which could result in leak of private keys.

  • CVE-2021-3667MedMar 2, 2022
    risk 0.00cvss 6.5epss 0.01

    An improper locking issue was found in the virStoragePoolLookupByTargetPath API of libvirt. It occurs in the storagePoolLookupByTargetPath function where a locked virStoragePoolObj object is not properly released on ACL permission failure. Clients connecting to the read-write…

  • CVE-2021-3631MedMar 2, 2022
    risk 0.00cvss 6.3epss 0.00

    A flaw was found in libvirt while it generates SELinux MCS category pairs for VMs' dynamic labels. This flaw allows one exploited guest to access files labeled for another guest, resulting in the breaking out of sVirt confinement. The highest threat from this vulnerability is to…

  • CVE-2021-3509MedMay 27, 2021
    risk 0.00cvss 6.1epss 0.02

    A flaw was found in Red Hat Ceph Storage 4, in the Dashboard component. In response to CVE-2020-27839, the JWT token was moved from localStorage to an httpOnly cookie. However, token cookies are used in the body of the HTTP response for the documentation, which again makes it…

  • CVE-2019-10200HigMar 19, 2021
    risk 0.00cvss 7.2epss 0.01

    A flaw was discovered in OpenShift Container Platform 4 where, by default, users with access to create pods also have the ability to schedule workloads on master nodes. Pods with permission to access the host network, running on master nodes, can retrieve security credentials…

  • CVE-2020-25633MedSep 18, 2020
    risk 0.00cvss 5.3epss 0.01

    A flaw was found in RESTEasy client in all versions of RESTEasy up to 4.5.6.Final. It may allow client users to obtain the server's potentially sensitive information when the server got WebApplicationException from the RESTEasy client call. The highest threat from this…

  • CVE-2020-10715MedSep 16, 2020
    risk 0.00cvss 4.3epss 0.01

    A content spoofing vulnerability was found in the openshift/console 3.11 and 4.x. This flaw allows an attacker to craft a URL and inject arbitrary text onto the error page that appears to be from the OpenShift instance. This attack could potentially convince a user that the…

  • CVE-2020-24612MedAug 24, 2020
    risk 0.00cvss 6.7epss 0.00

    An issue was discovered in the selinux-policy (aka Reference Policy) package 3.14 through 2020-08-24 because the .config/Yubico directory is mishandled. Consequently, when SELinux is in enforced mode, pam-u2f is not allowed to read the user's U2F configuration file. If…

  • CVE-2019-11252MedJul 23, 2020
    risk 0.00cvss 5.9epss 0.01

    The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulnerable to a credential leakage via error messages in mount failure logs and events for AzureFile and CephFS volumes.

  • CVE-2020-1738LowMar 16, 2020
    risk 0.00cvss 3.9epss 0.00

    A flaw was found in Ansible Engine when the module package or service is used and the parameter 'use' is not specified. If a previous task is executed with a malicious user, the module sent can be selected by the attacker using the ansible facts file. All versions in 2.7.x,…

  • CVE-2020-1693HigFeb 17, 2020
    risk 0.00cvss 8.6epss 0.04

    A flaw was found in Spacewalk up to version 2.9 where it was vulnerable to XML internal entity attacks via the /rpc/api endpoint. An unauthenticated remote attacker could use this flaw to retrieve the content of certain files and trigger a denial of service, or in certain…

  • CVE-2019-10185HigJul 31, 2019
    risk 0.00cvss 8.6epss 0.04

    It was found that icedtea-web up to and including 1.7.2 and 1.8.2 was vulnerable to a zip-slip attack during auto-extraction of a JAR file. An attacker could use this flaw to write files to arbitrary locations. This could also be used to replace the main running application and,…

  • CVE-2019-10181HigJul 31, 2019
    risk 0.00cvss 8.1epss 0.01

    It was found that in icedtea-web up to and including 1.7.2 and 1.8.2 executable code could be injected in a JAR file without compromising the signature verification. An attacker could use this flaw to inject code in a trusted JAR. The code would be executed inside the sandbox.

  • CVE-2019-10182HigJul 31, 2019
    risk 0.00cvss 8.2epss 0.03

    It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from elements in JNLP files. An attacker could trick a victim into running a specially crafted application and use this flaw to upload arbitrary files to arbitrary locations in the…

  • CVE-2019-10165LowJul 30, 2019
    risk 0.00cvss 2.3epss 0.00

    OpenShift Container Platform before version 4.1.3 writes OAuth tokens in plaintext to the audit logs for the Kubernetes API server and OpenShift API server. A user with sufficient privileges could recover OAuth tokens from these audit logs and use them to access other resources.

  • CVE-2019-10135HigJul 11, 2019
    risk 0.00cvss 7.2epss 0.02

    A flaw was found in the yaml.load() function in the osbs-client versions since 0.46 before 0.56.1. Insecure use of the yaml.load() function allowed the user to load any suspicious object for code execution via the parsing of malicious YAML files.

  • CVE-2018-10937MedSep 11, 2018
    risk 0.00cvss 4.6epss 0.01

    A cross site scripting flaw exists in the tetonic-console component of Openshift Container Platform 3.11. An attacker with the ability to create pods can use this flaw to perform actions on the K8s API as the victim.

  • CVE-2018-1127MedSep 11, 2018
    risk 0.00cvss 4.2epss 0.01

    Tendrl API in Red Hat Gluster Storage before 3.4.0 does not immediately remove session tokens after a user logs out. Session tokens remain active for a few minutes allowing attackers to replay tokens acquired via sniffing/MITM attacks and authenticate as the target user.

  • CVE-2018-10897HigAug 1, 2018
    risk 0.00cvss 8.1epss 0.06

    A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If an attacker controls a repository, they may be able to copy files outside of the destination directory on the targeted…

  • CVE-2017-2663HigJul 27, 2018
    risk 0.00cvss 8.2epss 0.00

    It was found that subscription-manager's DBus interface before 1.19.4 let unprivileged user access the com.redhat.RHSM1.Facts.GetFacts and com.redhat.RHSM1.Config.Set methods. An unprivileged local attacker could use these methods to gain access to private information, or launch…

  • CVE-2017-2582MedJul 26, 2018
    risk 0.00cvss 6.5epss 0.02

    It was found that while parsing the SAML messages the StaxParserUtil class of keycloak before 2.5.1 replaces special strings for obtaining attribute values with system property. This could allow an attacker to determine values of system properties at the attacked system by…

  • CVE-2018-1051HigJan 25, 2018
    risk 0.00cvss 8.1epss 0.01

    It was found that the fix for CVE-2016-9606 in versions 3.0.22 and 3.1.2 was incomplete and Yaml unmarshalling in Resteasy is still possible via `Yaml.load()` in YamlProvider.

  • CVE-2016-0616Jan 21, 2016
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

  • CVE-2016-0611Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

  • CVE-2016-0610Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and MariaDB before 10.0.22 and 10.1.x before 10.1.9 allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

  • CVE-2016-0609Jan 21, 2016
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to privileges.

  • CVE-2016-0608Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to UDF.

  • CVE-2016-0607Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via unknown vectors related to replication.

  • CVE-2016-0606Jan 21, 2016
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect integrity via unknown vectors related to encryption.

  • CVE-2016-0605Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.26 and earlier allows remote authenticated users to affect availability via unknown vectors.

  • CVE-2016-0600Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to InnoDB.

  • CVE-2016-0598Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML.

  • CVE-2016-0597Jan 21, 2016
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via unknown vectors related to Optimizer.

  • CVE-2016-0596Jan 21, 2016
    risk 0.00cvss epss 0.04

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier and 5.6.27 and earlier and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML.

  • CVE-2016-0595Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier allows remote authenticated users to affect availability via vectors related to DML.

  • CVE-2016-0546Jan 21, 2016
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to…

  • CVE-2016-0504Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0503.

  • CVE-2016-0503Jan 21, 2016
    risk 0.00cvss epss 0.03

    Unspecified vulnerability in Oracle MySQL 5.6.27 and earlier and 5.7.9 allows remote authenticated users to affect availability via vectors related to DML, a different vulnerability than CVE-2016-0504.

  • CVE-2015-5277Dec 17, 2015
    risk 0.00cvss epss 0.01

    The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.

  • CVE-2015-5304Dec 16, 2015
    risk 0.00cvss epss 0.02

    Red Hat JBoss Enterprise Application Platform (EAP) before 6.4.5 does not properly authorize access to shut down the server, which allows remote authenticated users with the Monitor, Deployer, or Auditor role to cause a denial of service via unspecified vectors.

  • CVE-2015-8317Dec 15, 2015
    risk 0.00cvss epss 0.06

    The xmlParseXMLDecl function in parser.c in libxml2 before 2.9.3 allows context-dependent attackers to obtain sensitive information via an (1) unterminated encoding value or (2) incomplete XML declaration in XML data, which triggers an out-of-bounds heap read.

Page 48 of 74