Redhat

Enterprise Linux Server Tus

765 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-4911

Warnung Exploit
  • EPSS 78.36%
  • Veröffentlicht 03.10.2023 18:15:10
  • Zuletzt bearbeitet 06.05.2025 21:02:34

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

7.5

CVE-2023-5157

  • EPSS 0.27%
  • Veröffentlicht 27.09.2023 15:19:41
  • Zuletzt bearbeitet 01.10.2025 15:15:41

A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service.

5.9

CVE-2023-4813

  • EPSS 0.3%
  • Veröffentlicht 12.09.2023 22:15:08
  • Zuletzt bearbeitet 26.09.2025 12:15:34

A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database...

7.8

CVE-2023-3899

  • EPSS 0.03%
  • Veröffentlicht 23.08.2023 11:15:07
  • Zuletzt bearbeitet 21.11.2024 08:18:19

A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the reg...

7.5

CVE-2023-2295

  • EPSS 1.67%
  • Veröffentlicht 17.05.2023 23:15:09
  • Zuletzt bearbeitet 22.01.2025 19:15:08

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent...

8.8

CVE-2023-2203

  • EPSS 0.1%
  • Veröffentlicht 17.05.2023 22:15:10
  • Zuletzt bearbeitet 22.01.2025 20:15:30

A flaw was found in the WebKitGTK package. An improper input validation issue may lead to a use-after-free vulnerability. This flaw allows attackers with network access to pass specially crafted web content files, causing a denial of service or arbit...

7.8

CVE-2023-2491

  • EPSS 0.06%
  • Veröffentlicht 17.05.2023 22:15:10
  • Zuletzt bearbeitet 22.01.2025 19:15:09

A flaw was found in the Emacs text editor. Processing a specially crafted org-mode code with the "org-babel-execute:latex" function in ob-latex.el can result in arbitrary command execution. This CVE exists because of a CVE-2023-28617 security regress...

7.8

CVE-2023-0494

  • EPSS 0.58%
  • Veröffentlicht 27.03.2023 21:15:10
  • Zuletzt bearbeitet 24.02.2025 18:15:16

A vulnerability was found in X.Org. This issue occurs due to a dangling pointer in DeepCopyPointerClasses that can be exploited by ProcXkbSetDeviceInfo() and ProcXkbGetDeviceInfo() to read and write into freed memory. This can lead to local privilege...

8.8

CVE-2019-8720

Warnung
  • EPSS 8.24%
  • Veröffentlicht 06.03.2023 23:15:10
  • Zuletzt bearbeitet 27.03.2025 14:08:19

A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.

8.8

CVE-2022-4254

Exploit
  • EPSS 0.09%
  • Veröffentlicht 01.02.2023 17:15:09
  • Zuletzt bearbeitet 27.03.2025 15:15:41

sssd: libsss_certmap fails to sanitise certificate data used in LDAP filters