VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
>
Enterprise Linux EUS
> 8.8
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-06-12
CVE-2024-3183
Unspecified vulnerability in Redhat products
A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key.
network
low complexity
redhat
8.1
8.1
2024-06-06
CVE-2024-3049
A flaw was found in Booth, a cluster ticket manager.
network
high complexity
clusterlabs
redhat
5.9
5.9
2024-02-15
CVE-2024-1488
A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration.
local
low complexity
fedoraproject
redhat
7.3
7.3
2024-02-09
CVE-2024-0229
An out-of-bounds memory access flaw was found in the X.Org server.
local
low complexity
x-org
fedoraproject
redhat
7.8
7.8
2024-01-10
CVE-2023-5455
Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA.
network
low complexity
freeipa
fedoraproject
redhat
CWE-352
6.5
6.5
2023-12-10
CVE-2023-5868
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments.
network
low complexity
postgresql
redhat
4.3
4.3
2023-12-10
CVE-2023-5869
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification.
network
low complexity
postgresql
redhat
CWE-190
8.8
8.8
2023-12-10
CVE-2023-5870
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher.
network
high complexity
postgresql
redhat
4.4
4.4
2023-11-03
CVE-2023-1476
Use After Free vulnerability in multiple products
A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code.
local
high complexity
linux
redhat
CWE-416
7.0
7.0
2023-11-03
CVE-2023-46846
HTTP Request Smuggling vulnerability in multiple products
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems.
network
low complexity
squid-cache
redhat
CWE-444
5.3
5.3
«
1
(current)
2
3
»
Next