Vulnerabilities > Redhat

DATE CVE VULNERABILITY TITLE RISK
2019-11-21 CVE-2012-3460 Improper Input Validation vulnerability in Redhat Enterprise MRG 2.0
cumin: At installation postgresql database user created without password
network
low complexity
redhat CWE-20
critical
 9.8
9.8
2019-11-20 CVE-2013-1817 Information Exposure vulnerability in multiple products
MediaWiki before 1.19.4 and 1.20.x before 1.20.3 contains an error in the api.php script which allows remote attackers to obtain sensitive information.
network
low complexity
mediawiki debian redhat fedoraproject CWE-200
7.5
7.5
2019-11-20 CVE-2013-1816 Improper Input Validation vulnerability in multiple products
MediaWiki before 1.19.4 and 1.20.x before 1.20.3 allows remote attackers to cause a denial of service (application crash) by sending a specially crafted request.
network
low complexity
mediawiki debian redhat fedoraproject CWE-20
7.5
7.5
2019-11-20 CVE-2012-6136 Incorrect Default Permissions vulnerability in multiple products
tuned 2.10.0 creates its PID file with insecure permissions which allows local users to kill arbitrary processes.
local
low complexity
redhat fedoraproject debian CWE-276
5.5
5.5
2019-11-19 CVE-2012-6135 Improper Input Validation vulnerability in multiple products
RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to delete arbitrary files during the startup process.
network
low complexity
phusion redhat CWE-20
7.5
7.5
2019-11-19 CVE-2011-4967 Improper Input Validation vulnerability in multiple products
tog-Pegasus has a package hash collision DoS vulnerability
network
low complexity
openpegasus redhat CWE-20
7.5
7.5
2019-11-18 CVE-2014-5118 Improper Input Validation vulnerability in multiple products
Trusted Boot (tboot) before 1.8.2 has a 'loader.c' Security Bypass Vulnerability 		5.5
5.5
2019-11-18 CVE-2019-10172 A flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries.
network
low complexity
fasterxml redhat debian apache
7.5
7.5
2019-11-18 CVE-2019-19081 Memory Leak vulnerability in multiple products
A memory leak in the nfp_flower_spawn_vnic_reprs() function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allows attackers to cause a denial of service (memory consumption), aka CID-8ce39eb5a67a.
network
high complexity
linux redhat opensuse CWE-401
5.9
5.9
2019-11-18 CVE-2019-19076 Memory Leak vulnerability in multiple products
A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption), aka CID-78beef629fd9.
network
high complexity
linux canonical redhat CWE-401
5.9
5.9