Vulnerabilities > Redhat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-06 | CVE-2023-4910 | Exposure of Resource to Wrong Sphere vulnerability in Redhat 3Scale API Management 2.0 A flaw was found In 3Scale Admin Portal. | 5.5 |
| 2023-11-06 | CVE-2023-5090 | Improper Handling of Exceptional Conditions vulnerability in multiple products A flaw was found in KVM. | 5.5 |
| 2023-11-06 | CVE-2023-42669 | A vulnerability was found in Samba's "rpcecho" development server, a non-Windows RPC server used to test Samba's DCE/RPC stack elements. | 6.5 |
| 2023-11-03 | CVE-2023-46846 | HTTP Request Smuggling vulnerability in multiple products SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems. | 5.3 |
| 2023-11-03 | CVE-2023-4091 | Incorrect Default Permissions vulnerability in multiple products A vulnerability was discovered in Samba, where the flaw allows SMB clients to truncate files, even with read-only permissions when the Samba VFS module "acl_xattr" is configured with "acl_xattr:ignore system acls = yes". | 6.5 |
| 2023-11-02 | CVE-2023-38473 | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
| 2023-11-02 | CVE-2023-38469 | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi, where a reachable assertion exists in avahi_dns_packet_append_record. | 5.5 |
| 2023-11-02 | CVE-2023-38470 | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
| 2023-11-02 | CVE-2023-38471 | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |
| 2023-11-02 | CVE-2023-38472 | Reachable Assertion vulnerability in multiple products A vulnerability was found in Avahi. | 5.5 |