Enterprise Linux Server TUS

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-03	CVE-2023-46848	Incorrect Conversion between Numeric Types vulnerability in multiple products Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input. network low complexity squid-cache redhat CWE-681	7.5
2023-11-01	CVE-2023-3972	Exposure of Resource to Wrong Sphere vulnerability in Redhat products A vulnerability was found in insights-client. local low complexity redhat CWE-668	7.8
2023-10-03	CVE-2023-4911	Out-of-bounds Write vulnerability in multiple products A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. local low complexity gnu fedoraproject redhat CWE-787	7.8
2023-09-27	CVE-2023-5157	A vulnerability was found in MariaDB. network low complexity mariadb fedoraproject redhat	7.5
2023-09-12	CVE-2023-4813	Use After Free vulnerability in multiple products A flaw was found in glibc. network high complexity gnu redhat fedoraproject netapp CWE-416	5.9
2023-08-23	CVE-2023-3899	Incorrect Authorization vulnerability in multiple products A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. local low complexity redhat fedoraproject CWE-863	7.8
2023-05-17	CVE-2023-2295	A vulnerability was found in the libreswan library. network low complexity libreswan redhat	7.5
2023-05-17	CVE-2023-2203	Use After Free vulnerability in multiple products A flaw was found in the WebKitGTK package. network low complexity webkitgtk redhat CWE-416	8.8
2023-05-17	CVE-2023-2491	Command Injection vulnerability in multiple products A flaw was found in the Emacs text editor. local low complexity gnu redhat CWE-77	7.8
2023-03-27	CVE-2023-0494	Use After Free vulnerability in multiple products A vulnerability was found in X.Org. local low complexity x-org fedoraproject redhat CWE-416	7.8