Vulnerabilities > Redhat > Enterprise Linux Server EUS > 7.5

DATE	CVE	VULNERABILITY TITLE	RISK
2018-08-30	CVE-2018-14622	Unchecked Return Value vulnerability in multiple products A null-pointer dereference vulnerability was found in libtirpc before version 0.3.3-rc3. network low complexity redhat debian canonical libtirpc-project CWE-252	7.5
2018-08-27	CVE-2018-15910	Incorrect Type Conversion or Cast vulnerability in multiple products In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code. local low complexity debian canonical artifex redhat pulsesecure CWE-704	7.8
2018-08-20	CVE-2015-5160	Information Exposure vulnerability in multiple products libvirt before 2.2 includes Ceph credentials on the qemu command line when using RADOS Block Device (aka RBD), which allows local users to obtain sensitive information via a process listing. local low complexity libvirt redhat CWE-200	5.5
2018-08-17	CVE-2018-10873	Improper Input Validation vulnerability in multiple products A vulnerability was discovered in SPICE before version 0.14.1 where the generated code used for demarshalling messages lacked sufficient bounds checks. network low complexity spice-project debian canonical redhat CWE-20	8.8
2018-08-09	CVE-2018-10915	SQL Injection vulnerability in multiple products A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. network high complexity redhat canonical debian postgresql CWE-89	7.5
2018-08-06	CVE-2018-5390	Resource Exhaustion vulnerability in multiple products Linux kernel versions 4.9+ can be forced to make very expensive calls to tcp_collapse_ofo_queue() and tcp_prune_ofo_queue() for every incoming packet which can lead to a denial of service. network low complexity redhat linux canonical debian hp f5 a10networks cisco CWE-400	7.5
2018-08-01	CVE-2016-9583	Out-of-bounds Read vulnerability in multiple products An out-of-bounds heap read vulnerability was found in the jpc_pi_nextpcrl() function of jasper before 2.0.6 when processing crafted input. local low complexity redhat jasper-project oracle CWE-125	7.8
2018-08-01	CVE-2016-8654	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A heap-buffer overflow vulnerability was found in QMFB code in JPC codec caused by buffer being allocated with too small size. local low complexity jasper-project redhat debian CWE-119	7.8
2018-08-01	CVE-2016-8635	It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. network high complexity mozilla redhat	5.9
2018-08-01	CVE-2016-9573	An out-of-bounds read vulnerability was found in OpenJPEG 2.1.2, in the j2k_to_image tool. network low complexity uclouvain redhat debian	8.1