Vulnerabilities > Redhat
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-01 | CVE-2014-3648 | Resource Exhaustion vulnerability in Redhat Jboss Aerogear 1.0.0 The simplepush server iterates through the application installations and pushes a notification to the server provided by deviceToken. | 7.5 |
| 2022-07-01 | CVE-2014-3650 | Cross-site Scripting vulnerability in Redhat Jboss Aerogear 1.0.0 Multiple persistent cross-site scripting (XSS) flaws were found in the way Aerogear handled certain user-supplied content. | 5.4 |
| 2022-06-30 | CVE-2014-0068 | Incorrect Permission Assignment for Critical Resource vulnerability in Redhat Openshift-Origin-Node-Util It was reported that watchman in openshift node-utils creates /var/run/watchman.pid and /var/log/watchman.ouput with world writable permission. | 5.5 |
| 2022-06-30 | CVE-2013-4561 | Exposure of Resource to Wrong Sphere vulnerability in Redhat Openshift In a openshift node, there is a cron job to update mcollective facts that mishandles a temporary file. | 9.1 |
| 2022-06-30 | CVE-2022-1852 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference flaw was found in the Linux kernel’s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. | 5.5 |
| 2022-06-30 | CVE-2022-2078 | A vulnerability was found in the Linux kernel's nft_set_desc_concat_parse() function .This flaw allows an attacker to trigger a buffer overflow via nft_set_desc_concat_parse() , causing a denial of service and possibly to run code. | 5.5 |
| 2022-06-28 | CVE-2022-0987 | A flaw was found in PackageKit in the way some of the methods exposed by the Transaction interface examines files. | 3.3 |
| 2022-06-21 | CVE-2022-1665 | Unspecified vulnerability in Redhat Enterprise Linux 8.0 A set of pre-production kernel packages of Red Hat Enterprise Linux for IBM Power architecture can be booted by the grub in Secure Boot mode even though it shouldn't. | 8.2 |
| 2022-06-21 | CVE-2022-1833 | Incorrect Default Permissions vulnerability in Redhat AMQ Broker 7.9.4 A flaw was found in AMQ Broker Operator 7.9.4 installed via UI using OperatorHub where a low-privilege user that has access to the namespace where the AMQ Operator is deployed has access to clusterwide edit rights by checking the secrets. | 8.8 |
| 2022-06-16 | CVE-2022-32545 | Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. | 7.8 |