Redhat

Enterprise Linux Eus

778 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.1

CVE-2019-2422

  • EPSS 0.24%
  • Published 16.01.2019 19:30:31
  • Last modified 21.11.2024 04:40:50

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker...

6.5

CVE-2019-2434

  • EPSS 0.23%
  • Published 16.01.2019 19:30:31
  • Last modified 21.11.2024 04:40:51

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows low privileged attacker with network a...

5.3

CVE-2018-20685

  • EPSS 3.74%
  • Published 10.01.2019 21:29:00
  • Last modified 21.11.2024 04:01:59

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

6.5

CVE-2018-20662

  • EPSS 0.46%
  • Published 03.01.2019 13:29:00
  • Last modified 21.11.2024 04:01:57

In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is m...

6.5

CVE-2018-20650

  • EPSS 0.36%
  • Published 01.01.2019 16:29:00
  • Last modified 21.11.2024 04:01:56

A reachable Object::dictLookup assertion in Poppler 0.72.0 allows attackers to cause a denial of service due to the lack of a check for the dict data type, as demonstrated by use of the FileSpec class (in FileSpec.cc) in pdfdetach.

9.8

CVE-2018-18311

  • EPSS 13.02%
  • Published 07.12.2018 21:29:00
  • Last modified 21.11.2024 03:55:40

Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.

9.8

CVE-2018-8787

Exploit
  • EPSS 14.14%
  • Published 29.11.2018 18:29:00
  • Last modified 21.11.2024 04:14:18

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a remote code execution.

7.5

CVE-2018-12121

  • EPSS 4.28%
  • Published 28.11.2018 17:29:00
  • Last modified 27.12.2024 16:15:22

Node.js: All versions prior to Node.js 6.15.0, 8.14.0, 10.14.0 and 11.3.0: Denial of Service with large HTTP headers: By using a combination of many requests with maximum sized headers (almost 80 KB per connection), and carefully timed completion of ...

6.5

CVE-2018-18897

Exploit
  • EPSS 0.2%
  • Published 02.11.2018 07:29:00
  • Last modified 21.11.2024 03:56:50

An issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc, as demonstrated by pdftocairo.

5.3

CVE-2018-3214

  • EPSS 0.15%
  • Published 17.10.2018 01:31:23
  • Last modified 21.11.2024 04:05:27

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: Sound). Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulner...