Vulnerabilities > Redhat > Enterprise Linux > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-28 | CVE-2023-5217 | Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity webmproject microsoft mozilla fedoraproject debian apple google redhat CWE-787 | 8.8 |
| 2023-09-27 | CVE-2023-5157 | A vulnerability was found in MariaDB. | 7.5 |
| 2023-09-25 | CVE-2023-42753 | Out-of-bounds Write vulnerability in multiple products An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. | 7.8 |
| 2023-09-25 | CVE-2023-4156 | Out-of-bounds Read vulnerability in multiple products A heap out-of-bounds read flaw was found in builtin.c in the gawk package. | 7.1 |
| 2023-09-25 | CVE-2023-5156 | Memory Leak vulnerability in multiple products A flaw was found in the GNU C Library. | 7.5 |
| 2023-09-13 | CVE-2023-2680 | Use After Free vulnerability in multiple products This CVE exists because of an incomplete fix for CVE-2021-3750. | 8.2 |
| 2023-08-23 | CVE-2023-3899 | Incorrect Authorization vulnerability in multiple products A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. | 7.8 |
| 2023-08-16 | CVE-2023-4387 | Use After Free vulnerability in multiple products A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. | 7.1 |
| 2023-08-11 | CVE-2023-39417 | SQL Injection vulnerability in multiple products IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct (dollar quoting, '', or ""). | 8.8 |
| 2023-08-10 | CVE-2023-4128 | Use After Free vulnerability in multiple products A use-after-free flaw was found in net/sched/cls_fw.c in classifiers (cls_fw, cls_u32, and cls_route) in the Linux Kernel. | 7.8 |