Vulnerabilities > Redhat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-14 | CVE-2023-38252 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. | 5.5 |
| 2023-07-14 | CVE-2023-38253 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. | 5.5 |
| 2023-07-12 | CVE-2023-3618 | Classic Buffer Overflow vulnerability in multiple products A flaw was found in libtiff. | 6.5 |
| 2023-07-11 | CVE-2023-1672 | Race Condition vulnerability in multiple products A race condition exists in the Tang server functionality for key generation and key rotation. | 5.3 |
| 2023-07-10 | CVE-2023-26590 | Incorrect Comparison vulnerability in multiple products A floating point exception vulnerability was found in sox, in the lsx_aiffstartwrite function at sox/src/aiff.c:622:58. | 5.5 |
| 2023-07-10 | CVE-2023-32627 | Incorrect Comparison vulnerability in multiple products A floating point exception vulnerability was found in sox, in the read_samples function at sox/src/voc.c:334:18. | 5.5 |
| 2023-07-10 | CVE-2023-1183 | Path Traversal vulnerability in multiple products A flaw was found in the Libreoffice package. | 5.5 |
| 2023-07-07 | CVE-2022-4361 | Cross-site Scripting vulnerability in Redhat products Keycloak, an open-source identity and access management solution, has a cross-site scripting (XSS) vulnerability in the SAML or OIDC providers. | 6.1 |
| 2023-06-30 | CVE-2023-1206 | Resource Exhaustion vulnerability in multiple products A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. | 5.7 |
| 2023-06-23 | CVE-2023-3212 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. | 4.4 |