Redhat

Enterprise Linux Eus

779 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2024-0229

  • EPSS 0.32%
  • Veröffentlicht 09.02.2024 07:16:00
  • Zuletzt bearbeitet 04.11.2025 19:16:26

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if...

7.5

CVE-2023-6356

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and c...

7.5

CVE-2023-6535

  • EPSS 0.03%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

7.5

CVE-2023-6536

  • EPSS 0.02%
  • Veröffentlicht 07.02.2024 21:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:24

A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver, caus...

5.9

CVE-2023-5992

Exploit
  • EPSS 0.28%
  • Veröffentlicht 31.01.2024 14:15:48
  • Zuletzt bearbeitet 03.11.2025 22:16:32

A vulnerability was found in OpenSC where PKCS#1 encryption padding removal is not implemented as side-channel resistant. This issue may result in the potential leak of private data.

6.5

CVE-2023-5455

  • EPSS 0.31%
  • Veröffentlicht 10.01.2024 13:15:48
  • Zuletzt bearbeitet 21.11.2024 08:41:47

A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of ...

7.8

CVE-2023-47038

  • EPSS 0.09%
  • Veröffentlicht 18.12.2023 14:15:08
  • Zuletzt bearbeitet 04.11.2025 19:16:05

A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer.

7.5

CVE-2023-6478

  • EPSS 1.24%
  • Veröffentlicht 13.12.2023 07:15:31
  • Zuletzt bearbeitet 04.08.2025 21:15:27

A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive information.

7.8

CVE-2023-6377

  • EPSS 0.42%
  • Veröffentlicht 13.12.2023 07:15:30
  • Zuletzt bearbeitet 18.08.2025 12:15:26

A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege escalation or possible remote code execution in cas...

4.3

CVE-2023-5868

  • EPSS 2.1%
  • Veröffentlicht 10.12.2023 18:15:07
  • Zuletzt bearbeitet 04.11.2025 20:17:13

A memory disclosure vulnerability was found in PostgreSQL that allows remote users to access sensitive information by exploiting certain aggregate function calls with 'unknown'-type arguments. Handling 'unknown'-type values from string literals witho...