Vulnerabilities > Redhat > Enterprise Linux Server TUS > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-23 | CVE-2023-3899 | Incorrect Authorization vulnerability in multiple products A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. | 7.8 |
| 2023-05-17 | CVE-2023-2295 | A vulnerability was found in the libreswan library. | 7.5 |
| 2023-05-17 | CVE-2023-2203 | Use After Free vulnerability in multiple products A flaw was found in the WebKitGTK package. | 8.8 |
| 2023-05-17 | CVE-2023-2491 | Command Injection vulnerability in multiple products A flaw was found in the Emacs text editor. | 7.8 |
| 2023-03-27 | CVE-2023-0494 | Use After Free vulnerability in multiple products A vulnerability was found in X.Org. | 7.8 |
| 2023-03-06 | CVE-2019-8720 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A vulnerability was found in WebKit. | 8.8 |
| 2023-02-01 | CVE-2022-4254 | LDAP Injection vulnerability in multiple products sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters | 8.8 |
| 2022-12-14 | CVE-2022-2601 | Heap-based Buffer Overflow vulnerability in multiple products A buffer overflow was found in grub_font_construct_glyph(). | 8.6 |
| 2022-09-29 | CVE-2014-0144 | Improper Input Validation vulnerability in multiple products QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2 and various other image formats are vulnerable to potential memory corruptions, integer/buffer overflows or crash caused by missing input validations which could allow a remote user to execute arbitrary code on the host with the privileges of the QEMU process. | 8.6 |
| 2022-08-23 | CVE-2021-23177 | Link Following vulnerability in multiple products An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. | 7.8 |