Vulnerabilidades em Red Hat
1.478 resultadosCVE-2018-10923HIGHIt was found that the "mknod" call derived from mknod(2) can create files pointing to devices on a glusterfs server node. An authenticated aEPSS 1.7%CVE-2023-4813MEDIUMGlibc: potential use-after-free in gaih_inet()EPSS 1.7%CVE-2023-6121MEDIUMKernel: nvme: info leak due to out-of-bounds read in nvmet_ctrl_find_getEPSS 1.7%CVE-2012-0059MEDIUMSpacewalk-backend: spacewalk-backend: information disclosure via cleartext passwords in error messagesEPSS 1.6%CVE-2024-1023MEDIUMIo.vertx/vertx-core: memory leak due to the use of netty fastthreadlocal data structures in vertxEPSS 1.6%CVE-2023-6478HIGHXorg-x11-server: out-of-bounds memory read in rrchangeoutputproperty and rrchangeproviderpropertyEPSS 1.6%CVE-2017-3139—A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpEPSS 1.6%CVE-2020-10753MEDIUMA flaw was found in the Red Hat Ceph Storage RadosGW (Ceph Object Gateway). The vulnerability is related to the injection of HTTP headers viEPSS 1.6%CVE-2024-0553HIGHGnutls: incomplete fix for cve-2023-5981EPSS 1.6%CVE-2019-10217MEDIUMA flaw was found in ansible 2.8.0 before 2.8.4. Fields managing sensitive data should be set as such by no_log feature. Some of these fieldsEPSS 1.6%CVE-2019-14859HIGHA flaw was found in all python-ecdsa versions before 0.13.3, where it did not correctly verify whether signatures used DER encoding. WithoutEPSS 1.6%CVE-2023-6377HIGHXorg-x11-server: out-of-bounds memory reads/writes in xkb button actionsEPSS 1.6%CVE-2016-7075HIGHIt was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509 client intermediate certificate host name fiEPSS 1.6%CVE-2023-5568MEDIUMSamba: heap buffer overflow with freshness tokens in the heimdal kdcEPSS 1.6%CVE-2023-39417HIGHPostgresql: extension script @substitutions@ within quoting allow sql injectionEPSS 1.6%CVE-2020-1757HIGHA flaw was found in all undertow-2.x.x SP1 versions prior to undertow-2.0.30.SP1, all undertow-1.x.x and undertow-2.x.x versions prior to unEPSS 1.6%CVE-2024-8176HIGHLibexpat: expat: improper restriction of xml entity expansion depth in libexpatEPSS 1.6%CVE-2023-1260HIGHKube-apiserver: privescEPSS 1.6%CVE-2019-10203MEDIUMPowerDNS Authoritative daemon , pdns versions 4.0.x before 4.0.9, 4.1.x before 4.1.11, exiting when encountering a serial between 2^31 and 2EPSS 1.6%CVE-2024-1132HIGHKeycloak: path transversal in redirection validationEPSS 1.6%