Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2019-12-19 CVE-2019-19341 Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Ansible Tower 3.6.0/3.6.1
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2, where files in '/var/backup/tower' are left world-readable.
local
low complexity
redhat CWE-732
5.5
5.5
2019-12-19 CVE-2019-19340 Insecure Default Initialization of Resource vulnerability in Redhat Ansible Tower and Enterprise Linux
A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with '-e rabbitmq_enable_manager=true' exposes the RabbitMQ management interface publicly, as expected.
network
low complexity
redhat CWE-1188
8.2
8.2
2019-12-19 CVE-2019-19906 Off-by-one Error vulnerability in multiple products
cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. 		7.5
7.5
2019-12-18 CVE-2018-1311 Use After Free vulnerability in multiple products
The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs.
network
high complexity
apache redhat debian oracle fedoraproject CWE-416
8.1
8.1
2019-12-18 CVE-2019-8816 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8
2019-12-18 CVE-2019-8815 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8
2019-12-18 CVE-2019-8814 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8
2019-12-18 CVE-2019-8689 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8
2019-12-18 CVE-2019-8688 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8
2019-12-18 CVE-2019-8684 Out-of-bounds Write vulnerability in multiple products
Multiple memory corruption issues were addressed with improved memory handling.
network
low complexity
apple redhat CWE-787
8.8
8.8