Vulnerabilities > Redhat > Enterprise Linux FOR Power Little Endian EUS > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-23	CVE-2023-3899	Incorrect Authorization vulnerability in multiple products A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. local low complexity redhat fedoraproject CWE-863	7.8
2023-07-24	CVE-2023-38200	Excessive Iteration vulnerability in multiple products A flaw was found in Keylime. network low complexity keylime redhat fedoraproject CWE-834	7.5
2023-03-27	CVE-2023-0179	Integer Overflow or Wraparound vulnerability in multiple products A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. local low complexity linux canonical fedoraproject redhat CWE-190	7.8
2023-03-27	CVE-2023-0494	Use After Free vulnerability in multiple products A vulnerability was found in X.Org. local low complexity x-org fedoraproject redhat CWE-416	7.8
2023-03-06	CVE-2019-8720	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A vulnerability was found in WebKit. network low complexity webkitgtk wpewebkit redhat CWE-119	8.8
2022-12-14	CVE-2022-2601	Heap-based Buffer Overflow vulnerability in multiple products A buffer overflow was found in grub_font_construct_glyph(). local low complexity gnu redhat fedoraproject CWE-122	8.6
2022-08-23	CVE-2021-23177	Link Following vulnerability in multiple products An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. local low complexity libarchive fedoraproject redhat debian CWE-59	7.8
2022-08-23	CVE-2021-31566	Link Following vulnerability in multiple products An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the archive. local low complexity libarchive fedoraproject redhat debian splunk CWE-59	7.8
2022-07-06	CVE-2021-3697	Out-of-bounds Write vulnerability in multiple products A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. local high complexity gnu redhat CWE-787	7.0
2022-04-04	CVE-2022-27649	Incorrect Default Permissions vulnerability in multiple products A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. network high complexity podman-project redhat fedoraproject CWE-276	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.