Redhat

Enterprise Linux Server Tus

765 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2019-3459

Exploit
  • EPSS 0.48%
  • Published 11.04.2019 16:29:02
  • Last modified 21.11.2024 04:42:05

A heap address information leak while using L2CAP_GET_CONF_OPT was discovered in the Linux kernel before 5.1-rc1.

6.5

CVE-2019-3460

Exploit
  • EPSS 0.48%
  • Published 11.04.2019 16:29:02
  • Last modified 21.11.2024 04:42:05

A heap data infoleak in multiple locations including L2CAP_PARSE_CONF_RSP was found in the Linux kernel before 5.1-rc1.

7.5

CVE-2017-3139

  • EPSS 0.72%
  • Published 09.04.2019 18:29:00
  • Last modified 21.11.2024 03:24:54

A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named exit unexpectedly with an assertion failure via a specially crafted DNS response.

5.6

CVE-2019-3887

  • EPSS 0.01%
  • Published 09.04.2019 16:29:01
  • Last modified 21.11.2024 04:42:48

A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via L2 guest, when 'virtualize x2APIC mode' is enabled....

6.5

CVE-2019-0757

  • EPSS 8.05%
  • Published 09.04.2019 02:29:00
  • Last modified 21.11.2024 04:17:13

A tampering vulnerability exists in the NuGet Package Manager for Linux and Mac that could allow an authenticated attacker to modify a NuGet package's folder structure, aka 'NuGet Package Manager Tampering Vulnerability'.

7.8

CVE-2019-0211

Warning Exploit
  • EPSS 85.73%
  • Published 08.04.2019 22:29:00
  • Last modified 04.04.2025 15:34:11

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code executing in less-privileged child processes or threads (including scripts executed by an in-process scripting interpreter) could execute arbitrary code with...

9.8

CVE-2019-0160

  • EPSS 0.33%
  • Published 27.03.2019 20:29:03
  • Last modified 21.11.2024 04:16:22

Buffer overflow in system firmware for EDK II may allow unauthenticated user to potentially enable escalation of privilege and/or denial of service via network access.

8.1

CVE-2019-3878

Exploit
  • EPSS 3.21%
  • Published 26.03.2019 18:29:00
  • Last modified 21.11.2024 04:42:46

A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is configured to only let through authenticated users (with the require valid-user directive), adding special HTTP headers tha...

5.5

CVE-2019-3835

  • EPSS 1.7%
  • Published 25.03.2019 19:29:01
  • Last modified 21.11.2024 04:42:39

It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains i...

5.5

CVE-2019-3838

  • EPSS 1.41%
  • Published 25.03.2019 19:29:01
  • Last modified 21.11.2024 04:42:40

It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the cons...