Redhat

Enterprise Linux Tus

20 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2024-3183

  • EPSS 16.79%
  • Published 12.06.2024 09:15:18
  • Last modified 21.11.2024 09:29:05

A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is different for each new session, which protects it from brute force attacks. However, the ticket it contains is encrypted us...

7.8

CVE-2024-0229

  • EPSS 0.29%
  • Published 09.02.2024 07:16:00
  • Last modified 04.08.2025 21:15:28

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation (if...

5.9

CVE-2023-4806

  • EPSS 1.9%
  • Published 18.09.2023 17:15:55
  • Last modified 26.09.2025 12:15:32

A flaw has been identified in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethos...

6.5

CVE-2023-4527

Exploit
  • EPSS 0.11%
  • Published 18.09.2023 17:15:55
  • Last modified 24.06.2025 17:31:20

A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured with no-aaaa mode via /etc/resolv.conf, a DNS response via TCP larger than 2048 bytes can potentially disclose stack con...

6.8

CVE-2021-20316

  • EPSS 0.44%
  • Published 23.08.2022 16:15:09
  • Last modified 21.11.2024 05:46:21

A flaw was found in the way Samba handled file/directory metadata. This flaw allows an authenticated attacker with permissions to read or modify share metadata, to perform this operation outside of the share.

8.5

CVE-2020-25717

  • EPSS 0.2%
  • Published 18.02.2022 18:15:08
  • Last modified 21.11.2024 05:18:33

A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.

5.9

CVE-2016-2124

  • EPSS 0.79%
  • Published 18.02.2022 18:15:08
  • Last modified 21.11.2024 02:47:52

A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.

6.8

CVE-2021-3672

Exploit
  • EPSS 0.11%
  • Published 23.11.2021 19:15:07
  • Last modified 21.11.2024 06:22:07

A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers) can lead to output of wrong hostnames which might potentially lead to Domain Hijacking. The highest threat from this vulner...

8.8

CVE-2021-3570

  • EPSS 1.23%
  • Published 09.07.2021 11:15:08
  • Last modified 21.11.2024 06:21:52

A flaw was found in the ptp4l program of the linuxptp package. A missing length check when forwarding a PTP message between ports allows a remote attacker to cause an information leak, crash, or potentially remote code execution. The highest threat f...

6.5

CVE-2020-14301

  • EPSS 0.26%
  • Published 27.05.2021 20:15:07
  • Last modified 21.11.2024 05:02:57

An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows an attacker to access potentially sensitive inform...