Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-20	CVE-2023-22024	Unspecified vulnerability in Oracle Linux and VM Server In the Unbreakable Enterprise Kernel (UEK), the RDS module in UEK has two setsockopt(2) options, RDS_CONN_RESET and RDS6_CONN_RESET, that are not re-entrant. local low complexity oracle	5.5
2022-08-29	CVE-2022-21385	Unspecified vulnerability in Oracle Linux A flaw in net_rds_alloc_sgs() in Oracle Linux kernels allows unprivileged local users to crash the machine. local low complexity oracle	6.2
2022-06-14	CVE-2022-21504	Use After Free vulnerability in Oracle Linux 7/8 The code in UEK6 U3 was missing an appropiate file descriptor count to be missing. local low complexity oracle CWE-416	5.5
2022-06-09	CVE-2022-21499	Out-of-bounds Write vulnerability in multiple products KGDB and KDB allow read and write access to kernel memory, and thus should be restricted during lockdown. local low complexity oracle debian CWE-787	6.7
2017-08-07	CVE-2015-7852	Improper Input Validation vulnerability in multiple products ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets. network high complexity ntp debian netapp oracle redhat CWE-20	5.9
2017-08-07	CVE-2015-7702	Improper Input Validation vulnerability in multiple products The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). network low complexity ntp oracle debian netapp redhat CWE-20	6.5
2017-03-15	CVE-2015-8896	Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file. network low complexity imagemagick oracle redhat	6.5
2017-01-30	CVE-2016-2518	Out-of-bounds Read vulnerability in multiple products The MATCH_ASSOC function in NTP before version 4.2.8p9 and 4.3.x before 4.3.92 allows remote attackers to cause an out-of-bounds reference via an addpeer request with a large hmode value. network low complexity ntp debian netapp oracle redhat freebsd siemens CWE-125	5.3
2017-01-30	CVE-2015-7977	NULL Pointer Dereference vulnerability in multiple products ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service (NULL pointer dereference) via a ntpdc reslist command. network high complexity ntp oracle siemens netapp freebsd fedoraproject debian canonical CWE-476	5.9
2016-09-30	CVE-2016-0617	Unspecified vulnerability in Oracle Linux 6.0 Unspecified vulnerability in the kernel-uek component in Oracle Linux 6 allows local users to affect availability via unknown vectors. local low complexity oracle	5.5