Vulnerabilities > Redhat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-23 | CVE-2021-3917 | Incorrect Default Permissions vulnerability in Redhat Coreos-Installer A flaw was found in the coreos-installer, where it writes the Ignition config to the target system with world-readable access permissions. | 5.5 |
| 2022-08-23 | CVE-2021-3975 | A use-after-free flaw was found in libvirt. | 6.5 |
| 2022-08-23 | CVE-2021-3997 | Uncontrolled Recursion vulnerability in multiple products A flaw was found in systemd. | 5.5 |
| 2022-08-23 | CVE-2020-35509 | Improper Certificate Validation vulnerability in Redhat Keycloak 11.0.3/12.0.0 A flaw was found in keycloak affecting versions 11.0.3 and 12.0.0. | 5.4 |
| 2022-08-23 | CVE-2021-20316 | Race Condition vulnerability in multiple products A flaw was found in the way Samba handled file/directory metadata. | 6.8 |
| 2022-08-23 | CVE-2021-3670 | MaxQueryDuration not honoured in Samba AD DC LDAP | 6.5 |
| 2022-08-23 | CVE-2021-3701 | Incorrect Default Permissions vulnerability in Redhat Ansible Runner 2.0.0 A flaw was found in ansible-runner where the default temporary files configuration in ansible-2.0.0 are written to world R/W locations. | 6.6 |
| 2022-08-23 | CVE-2021-3702 | Race Condition vulnerability in Redhat Ansible Runner 2.0.0 A race condition flaw was found in ansible-runner, where an attacker could watch for rapid creation and deletion of a temporary directory, substitute their directory at that name, and then have access to ansible-runner's private_data_dir the next time ansible-runner made use of the private_data_dir. | 6.3 |
| 2022-08-23 | CVE-2021-3714 | A flaw was found in the Linux kernels memory deduplication mechanism. | 5.9 |
| 2022-08-23 | CVE-2021-3763 | Incorrect Authorization vulnerability in Redhat AMQ Broker 7.8.0/7.8.1/7.8.2 A flaw was found in the Red Hat AMQ Broker management console in version 7.8 where an existing user is able to access some limited information even when the role the user is assigned to should not be allow access to the management console. | 4.3 |