Vulnerabilities > Redhat

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-18	CVE-2018-16884	A flaw was found in the Linux kernel's NFS41+ subsystem. low complexity linux redhat debian canonical	8.0
2018-12-13	CVE-2018-19039	Information Exposure vulnerability in multiple products Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions. network low complexity grafana redhat netapp CWE-200	6.5
2018-12-12	CVE-2018-20103	Infinite Loop vulnerability in multiple products An issue was discovered in dns.c in HAProxy through 1.8.14. network low complexity haproxy canonical redhat CWE-835	7.5
2018-12-12	CVE-2018-20102	Out-of-bounds Read vulnerability in multiple products An out-of-bounds read in dns_validate_dns_response in dns.c was discovered in HAProxy through 1.8.14. network low complexity haproxy canonical redhat CWE-125	7.5
2018-12-12	CVE-2018-20097	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.cpp in Exiv2 0.27-RC3. network low complexity exiv2 debian fedoraproject redhat CWE-119	6.5
2018-12-12	CVE-2018-18397	Incorrect Authorization vulnerability in multiple products The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs file (if the user has read-only access to that file, and that file contains holes), related to fs/userfaultfd.c and mm/userfaultfd.c. local low complexity linux redhat canonical CWE-863	5.5
2018-12-11	CVE-2018-18359	Out-of-bounds Read vulnerability in multiple products Incorrect handling of Reflect.construct in V8 in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. network low complexity google redhat debian CWE-125	8.8
2018-12-11	CVE-2018-18358	Improper Input Validation vulnerability in multiple products Lack of special casing of localhost in WPAD files in Google Chrome prior to 71.0.3578.80 allowed an attacker on the local network segment to proxy resources on localhost via a crafted WPAD file. low complexity google debian redhat CWE-20	5.7
2018-12-11	CVE-2018-18357	Incorrect handling of confusable characters in URL Formatter in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. network low complexity google redhat debian	4.3
2018-12-11	CVE-2018-18356	Use After Free vulnerability in multiple products An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google debian canonical redhat opensuse CWE-416	8.8

Vulnerabilities > Redhat {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Redhat"}]}

Vulnerabilities > Redhat