Vulnerabilities > Redhat > Enterprise Linux FOR Power Little Endian > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-02-12	CVE-2023-6681	Resource Exhaustion vulnerability in multiple products A vulnerability was found in JWCrypto. network low complexity latchset redhat fedoraproject CWE-400	5.3
2024-01-31	CVE-2023-5992	Information Exposure Through Discrepancy vulnerability in multiple products A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. network high complexity opensc-project redhat CWE-203	5.9
2024-01-18	CVE-2024-0408	A flaw was found in the X.Org server. local low complexity x-org tigervnc redhat fedoraproject	5.5
2024-01-10	CVE-2023-5455	Cross-Site Request Forgery (CSRF) vulnerability in multiple products A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. network low complexity freeipa fedoraproject redhat CWE-352	6.5
2023-12-27	CVE-2023-4641	Improper Authentication vulnerability in multiple products A flaw was found in shadow-utils. local low complexity shadow-maint redhat CWE-287	5.5
2023-12-10	CVE-2023-5868	A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. network low complexity postgresql redhat	4.3
2023-12-10	CVE-2023-5870	A flaw was found in PostgreSQL involving the pg_cancel_backend role that signals background workers, including the logical replication launcher, autovacuum workers, and the autovacuum launcher. network high complexity postgresql redhat	4.4
2023-11-06	CVE-2023-42669	A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack elements. network low complexity samba redhat	6.5
2023-11-03	CVE-2023-46846	HTTP Request Smuggling vulnerability in multiple products SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems. network low complexity squid-cache redhat CWE-444	5.3
2023-10-03	CVE-2023-4732	Race Condition vulnerability in multiple products A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. local high complexity linux redhat CWE-362	4.7

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.