Redhat » Enterprise Linux Eus » 8.6 : Security Vulnerabilities, CVEs, Published In 2023 (Memory corruption)
CVE-2023-4911
Known exploited
Public exploit
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.
Max CVSS
7.8
EPSS Score
1.88%
Published
2023-10-03
Updated
2024-02-22
CISA KEV Added
2023-11-21
CVE-2019-8720
Known exploited
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.
Max CVSS
8.8
EPSS Score
0.61%
Published
2023-03-06
Updated
2023-03-11
CISA KEV Added
2022-05-23
2 vulnerabilities found