VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Redhat
>
Enterprise Linux EUS
> 9.2
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-02-07
CVE-2023-6356
NULL Pointer Dereference vulnerability in multiple products
A flaw was found in the Linux kernel's NVMe driver.
network
low complexity
linux
redhat
CWE-476
7.5
7.5
2024-02-07
CVE-2023-6535
NULL Pointer Dereference vulnerability in multiple products
A flaw was found in the Linux kernel's NVMe driver.
network
low complexity
linux
redhat
CWE-476
7.5
7.5
2024-02-07
CVE-2023-6536
NULL Pointer Dereference vulnerability in multiple products
A flaw was found in the Linux kernel's NVMe driver.
network
low complexity
linux
redhat
CWE-476
7.5
7.5
2024-01-10
CVE-2023-5455
Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA.
network
low complexity
freeipa
fedoraproject
redhat
CWE-352
6.5
6.5
2023-12-13
CVE-2023-6377
Out-of-bounds Read vulnerability in multiple products
A flaw was found in xorg-server.
local
low complexity
redhat
debian
x-org
tigervnc
CWE-125
7.8
7.8
2023-12-13
CVE-2023-6478
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in xorg-server.
network
low complexity
x-org
redhat
debian
tigervnc
CWE-190
7.5
7.5
2023-12-10
CVE-2023-5868
A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments.
network
low complexity
postgresql
redhat
4.3
4.3
2023-12-10
CVE-2023-5869
Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification.
network
low complexity
postgresql
redhat
CWE-190
8.8
8.8
2023-12-10
CVE-2023-5870
A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher.
network
high complexity
postgresql
redhat
4.4
4.4
2023-11-03
CVE-2023-46846
HTTP Request Smuggling vulnerability in multiple products
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems.
network
low complexity
squid-cache
redhat
CWE-444
5.3
5.3
«
1
(current)
2
3
»
Next