Redhat

Codeready Linux Builder For Arm64 Eus

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.4

CVE-2025-3155

Exploit
  • EPSS 0.15%
  • Veröffentlicht 03.04.2025 14:15:46
  • Zuletzt bearbeitet 12.08.2025 21:15:30

A flaw was found in Yelp. The Gnome user help application allows the help document to execute arbitrary scripts. This vulnerability allows malicious users to input help documents, which may exfiltrate user files to an external environment.

6.5

CVE-2025-2784

Exploit
  • EPSS 0.72%
  • Veröffentlicht 03.04.2025 03:15:18
  • Zuletzt bearbeitet 18.11.2025 09:15:50

A flaw was found in libsoup. The package is vulnerable to a heap buffer over-read when sniffing content via the skip_insight_whitespace() function. Libsoup clients may read one byte out-of-bounds in response to a crafted HTTP response by an HTTP serv...

7.8

CVE-2025-1756

  • EPSS 0.03%
  • Veröffentlicht 27.02.2025 16:15:39
  • Zuletzt bearbeitet 09.04.2025 14:07:26

mongosh may be susceptible to local privilege escalation under certain conditions potentially enabling unauthorized actions on a user's system with elevated privilege, when a crafted file is stored in C:\node_modules\. This issue affects mongosh prio...

7.1

CVE-2023-3758

Exploit
  • EPSS 0.04%
  • Veröffentlicht 18.04.2024 19:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:59

A race condition flaw was found in sssd where the GPO policy is not consistently applied for authenticated users. This may lead to improper authorization issues, granting or denying access to resources inappropriately.

7.3

CVE-2024-1488

  • EPSS 0.07%
  • Veröffentlicht 15.02.2024 05:15:10
  • Zuletzt bearbeitet 30.01.2025 22:15:09

A vulnerability was found in Unbound due to incorrect default permissions, allowing any process outside the unbound group to modify the unbound runtime configuration. If a process can connect over localhost to port 8953, it can alter the configuratio...

7.5

CVE-2023-6356

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and c...

7.5

CVE-2023-6535

  • EPSS 0.03%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

7.5

CVE-2023-6536

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

4.3

CVE-2023-5868

  • EPSS 2.1%
  • Veröffentlicht 10.12.2023 18:15:07
  • Zuletzt bearbeitet 04.11.2025 20:17:13

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals witho...

8.8

CVE-2023-5869

  • EPSS 1.24%
  • Veröffentlicht 10.12.2023 18:15:07
  • Zuletzt bearbeitet 04.11.2025 20:17:13

A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification where a remo...