Redhat » Enterprise Linux Server : Security Vulnerabilities

CVSS Scores Greater Than: 0 1 2 3 4 5 6 7 8 9

Sort Results By : CVE Number Descending CVE Number Ascending CVSS Score Descending Number Of Exploits Descending

#	CVE ID	CWE ID	Vulnerability Type(s)	Publish Date	Update Date	Score	Gained Access Level	Access	Complexity	Authentication	Conf.	Integ.	Avail.
1	CVE-2022-4254	90		2023-02-01	2023-02-09	0.0	None	???	???	???	???	???	???
sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters
2	CVE-2022-2739	200	+Info	2022-09-01	2023-02-12	0.0	None	???	???	???	???	???	???
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-14370, which was previously fixed via RHSA-2020:5056. This issue could possibly allow an attacker to gain access to sensitive information stored in environment variables.
3	CVE-2022-2738	416	Exec Code	2022-09-01	2023-02-12	0.0	None	???	???	???	???	???	???
The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or cause potential code execution in Go applications that use the Go GPGME wrapper library, under certain conditions, during GPG signature verification.
4	CVE-2019-8720	119	Exec Code Overflow Mem. Corr.	2023-03-06	2023-03-11	0.0	None	???	???	???	???	???	???
A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.
5	CVE-2015-1931	312	+Info	2022-09-29	2022-09-30	0.0	None	???	???	???	???	???	???
IBM Java Security Components in IBM SDK, Java Technology Edition 8 before SR1 FP10, 7 R1 before SR3 FP10, 7 before SR9 FP10, 6 R1 before SR8 FP7, 6 before SR16 FP7, and 5.0 before SR16 FP13 stores plaintext information in memory dumps, which allows local users to obtain sensitive information by reading a file.
6	CVE-2014-0148	835		2022-09-29	2023-02-13	0.0	None	???	???	???	???	???	???
Qemu before 2.0 block driver for Hyper-V VHDX Images is vulnerable to infinite loops and other potential issues when calculating BAT entries, due to missing bounds checks for block_size and logical_sector_size variables. These are used to derive other fields like 'sectors_per_block' etc. A user able to alter the Qemu disk image could ise this flaw to crash the Qemu instance resulting in DoS.
7	CVE-2014-0147	190		2022-09-29	2023-02-13	0.0	None	???	???	???	???	???	???
Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while creating QCOW2 snapshots, which leads to incorrectly calling update_refcount() routine.
8	CVE-2014-0144	20	Exec Code Overflow Mem. Corr.	2022-09-29	2023-02-13	0.0	None	???	???	???	???	???	???
QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2 and various other image formats are vulnerable to potential memory corruptions, integer/buffer overflows or crash caused by missing input validations which could allow a remote user to execute arbitrary code on the host with the privileges of the QEMU process.

Total number of vulnerabilities : 8 Page : 1 (This Page)