Redhat

Enterprise Linux Server Eus

622 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2012-4512

Exploit
  • EPSS 9.04%
  • Published 08.02.2020 19:15:10
  • Last modified 21.11.2024 01:43:02

The CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 allows remote attackers to cause a denial of service (crash) and possibly read memory via a crafted font face source, related to "type confusion."

7.8

CVE-2014-8141

  • EPSS 9.81%
  • Published 31.01.2020 23:15:10
  • Last modified 21.11.2024 02:18:38

Heap-based buffer overflow in the getZip64Data function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.

7.8

CVE-2014-8139

  • EPSS 9.81%
  • Published 31.01.2020 22:15:10
  • Last modified 21.11.2024 02:18:38

Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.

7.8

CVE-2014-8140

  • EPSS 9.81%
  • Published 31.01.2020 22:15:10
  • Last modified 21.11.2024 02:18:38

Heap-based buffer overflow in the test_compr_eb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command.

6.5

CVE-2015-3147

  • EPSS 0.54%
  • Published 14.01.2020 18:15:10
  • Last modified 21.11.2024 02:28:46

daemon/abrt-handle-upload.in in Automatic Bug Reporting Tool (ABRT), when moving problem reports from /var/spool/abrt-upload, allows local users to write to arbitrary files or possibly have other unspecified impact via a symlink attack on (1) /var/sp...

7.8

CVE-2014-7844

  • EPSS 0.91%
  • Published 14.01.2020 17:15:11
  • Last modified 21.11.2024 02:18:07

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.

9.8

CVE-2019-5544

Warning
  • EPSS 93.04%
  • Published 06.12.2019 16:15:11
  • Last modified 07.02.2025 14:59:31

OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.

7.8

CVE-2019-10216

  • EPSS 0.53%
  • Published 27.11.2019 13:15:10
  • Last modified 21.11.2024 04:18:40

In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that coul...

6.5

CVE-2018-12207

  • EPSS 0.26%
  • Published 14.11.2019 20:15:11
  • Last modified 21.11.2024 03:44:45

Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host system via local access.

7.8

CVE-2019-0155

  • EPSS 0.09%
  • Published 14.11.2019 19:15:12
  • Last modified 21.11.2024 04:16:21

Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold Series; Intel(R) Celeron(R) Processor J, N, G390...