VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
> Enterprise Linux AUS
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-11-01
CVE-2023-3972
Exposure of Resource to Wrong Sphere vulnerability in Redhat products
A vulnerability was found in insights-client.
local
low complexity
redhat
CWE-668
7.8
7.8
2023-03-27
CVE-2023-0494
Use After Free vulnerability in multiple products
A vulnerability was found in X.Org.
local
low complexity
x-org
fedoraproject
redhat
CWE-416
7.8
7.8
2022-08-26
CVE-2021-3669
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
A flaw was found in the Linux kernel.
local
low complexity
linux
ibm
debian
fedoraproject
redhat
CWE-770
5.5
5.5
2022-08-23
CVE-2021-20316
Race Condition vulnerability in multiple products
A flaw was found in the way Samba handled file/directory metadata.
network
high complexity
samba
debian
redhat
CWE-362
6.8
6.8
2022-03-03
CVE-2021-3609
Race Condition vulnerability in multiple products
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsystem to corrupt memory, crash the system or escalate privileges.
local
high complexity
linux
redhat
netapp
CWE-362
7.0
7.0
2021-07-09
CVE-2021-3570
Out-of-bounds Write vulnerability in multiple products
A flaw was found in the ptp4l program of the linuxptp package.
network
low complexity
linuxptp-project
redhat
fedoraproject
debian
CWE-787
8.8
8.8
2020-10-07
CVE-2020-14355
Classic Buffer Overflow vulnerability in multiple products
Multiple buffer overflow vulnerabilities were found in the QUIC image decoding process of the SPICE remote display system, before spice-0.14.2-1.
network
low complexity
spice-project
redhat
canonical
debian
opensuse
CWE-120
6.6
6.6
2020-09-11
CVE-2020-1045
<p>A security feature bypass vulnerability exists in the way Microsoft ASP.NET Core parses encoded cookie names.</p> <p>The ASP.NET Core cookie parser decodes entire cookie strings which could allow a malicious attacker to set a second cookie with the name being percent encoded.</p> <p>The security update addresses the vulnerability by fixing the way the ASP.NET Core cookie parser handles encoded names.</p>
network
low complexity
microsoft
fedoraproject
redhat
7.5
7.5
2020-05-22
CVE-2020-10711
NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7.
network
high complexity
linux
redhat
debian
opensuse
canonical
CWE-476
5.9
5.9
2019-08-14
CVE-2019-9506
Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation.
low complexity
google
apple
canonical
debian
opensuse
redhat
huawei
CWE-327
4.8
4.8
«
1
(current)
2
3
4
»
Next