Redhat

Enterprise Linux Server Tus

765 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-4911

Warning Exploit
  • EPSS 78.36%
  • Published 03.10.2023 18:15:10
  • Last modified 06.05.2025 21:02:34

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

7.5

CVE-2023-5157

  • EPSS 0.27%
  • Published 27.09.2023 15:19:41
  • Last modified 01.10.2025 15:15:41

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

5.9

CVE-2023-4813

  • EPSS 0.3%
  • Published 12.09.2023 22:15:08
  • Last modified 26.09.2025 12:15:34

A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database...

7.8

CVE-2023-3899

  • EPSS 0.03%
  • Published 23.08.2023 11:15:07
  • Last modified 21.11.2024 08:18:19

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the reg...

7.5

CVE-2023-2295

  • EPSS 1.67%
  • Published 17.05.2023 23:15:09
  • Last modified 22.01.2025 19:15:08

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent...

8.8

CVE-2023-2203

  • EPSS 0.1%
  • Published 17.05.2023 22:15:10
  • Last modified 22.01.2025 20:15:30

A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbit...

7.8

CVE-2023-2491

  • EPSS 0.06%
  • Published 17.05.2023 22:15:10
  • Last modified 22.01.2025 19:15:09

A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" function in ob-latex.el can result in arbitrary command execution. This CVE exists because of a CVE-2023-28617 security regress...

7.8

CVE-2023-0494

  • EPSS 0.58%
  • Published 27.03.2023 21:15:10
  • Last modified 24.02.2025 18:15:16

A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege...

8.8

CVE-2019-8720

Warning
  • EPSS 8.24%
  • Published 06.03.2023 23:15:10
  • Last modified 27.03.2025 14:08:19

A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.

8.8

CVE-2022-4254

Exploit
  • EPSS 0.09%
  • Published 01.02.2023 17:15:09
  • Last modified 27.03.2025 15:15:41

sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters