Enterprise Linux Server Update Services FOR SAP Solutions

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-06	CVE-2024-3049	Insufficient Verification of Data Authenticity vulnerability in multiple products A flaw was found in Booth, a cluster ticket manager. network high complexity clusterlabs redhat CWE-345	5.9
2024-01-10	CVE-2023-5455	Cross-Site Request Forgery (CSRF) vulnerability in multiple products A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. network low complexity freeipa fedoraproject redhat CWE-352	6.5
2023-11-01	CVE-2023-3972	Exposure of Resource to Wrong Sphere vulnerability in Redhat products A vulnerability was found in insights-client. local low complexity redhat CWE-668	7.8
2023-08-23	CVE-2023-3899	Incorrect Authorization vulnerability in multiple products A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. local low complexity redhat fedoraproject CWE-863	7.8
2023-03-27	CVE-2023-0494	Use After Free vulnerability in multiple products A vulnerability was found in X.Org. local low complexity x-org fedoraproject redhat CWE-416	7.8
2023-03-06	CVE-2019-8720	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A vulnerability was found in WebKit. network low complexity webkitgtk wpewebkit redhat CWE-119	8.8
2023-02-01	CVE-2022-4254	LDAP Injection vulnerability in multiple products sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters network low complexity fedoraproject redhat CWE-90	8.8
2022-12-14	CVE-2022-2601	Heap-based Buffer Overflow vulnerability in multiple products A buffer overflow was found in grub_font_construct_glyph(). local low complexity gnu redhat fedoraproject CWE-122	8.6
2022-04-29	CVE-2022-1227	Improper Privilege Management vulnerability in multiple products A privilege escalation flaw was found in Podman. network low complexity podman-project psgo-project redhat fedoraproject CWE-269	8.8
2022-04-04	CVE-2022-27649	Incorrect Default Permissions vulnerability in multiple products A flaw was found in Podman, where containers were started incorrectly with non-empty default permissions. network high complexity podman-project redhat fedoraproject CWE-276	7.5