Vulnerabilities > Redhat > Enterprise Linux > 6.0

DATE	CVE	VULNERABILITY TITLE	RISK
2019-11-13	CVE-2010-4657	Missing Release of Resource after Effective Lifetime vulnerability in multiple products PHP5 before 5.4.4 allows passing invalid utf-8 strings via the xmlTextWriterWriteAttribute, which are then misparsed by libxml2. network low complexity php redhat debian CWE-772	7.5
2019-11-05	CVE-2016-4983	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products A postinstall script in the dovecot rpm allows local users to read the contents of newly created SSL/TLS key files. local low complexity dovecot opensuse redhat CWE-732	3.3
2019-11-05	CVE-2013-5661	Authentication Bypass by Spoofing vulnerability in multiple products Cache Poisoning issue exists in DNS Response Rate Limiting. network high complexity isc nlnetlabs nic redhat CWE-290	5.9
2019-11-04	CVE-2013-4409	Improper Input Validation vulnerability in multiple products An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag Review Board before 1.7.15 when parsing JSON requests. network low complexity reviewboard fedoraproject redhat CWE-20 critical	9.8
2019-11-04	CVE-2013-4251	Improper Privilege Management vulnerability in multiple products The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. local low complexity scipy fedoraproject redhat debian CWE-269	7.8
2019-11-04	CVE-2005-4890	Improper Input Validation vulnerability in multiple products There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". local low complexity sudo-project debian redhat CWE-20	7.8
2019-11-01	CVE-2013-4751	Improper Input Validation vulnerability in multiple products php-symfony2-Validator has loss of information during serialization network low complexity sensiolabs fedoraproject redhat CWE-20	8.1
2019-10-14	CVE-2019-14823	A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, where it implicitly trusted the root certificate of a certificate chain. network high complexity jss-cryptomanager-project redhat	7.4
2019-09-20	CVE-2019-14816	There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code. local low complexity linux redhat debian fedoraproject netapp canonical opensuse	7.8
2019-09-20	CVE-2019-14814	There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code. local low complexity linux redhat debian canonical opensuse netapp	7.8