Redhat

Enterprise Linux

1709 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2015-0408

  • EPSS 11.05%
  • Published 21.01.2015 18:59:48
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI.

5

CVE-2015-0407

  • EPSS 2.86%
  • Published 21.01.2015 18:59:47
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to Swing.

9.3

CVE-2015-0395

  • EPSS 21.94%
  • Published 21.01.2015 18:59:38
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

5.4

CVE-2015-0383

  • EPSS 0.1%
  • Published 21.01.2015 18:59:28
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allows local users to affect integrity and availability via unknown vectors related to Hotspot.

10

CVE-2014-6601

  • EPSS 13.26%
  • Published 21.01.2015 18:59:03
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot.

7.5

CVE-2014-8138

  • EPSS 5.9%
  • Published 24.12.2014 18:59:02
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the jp2_decode function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 file.

6.8

CVE-2014-8137

  • EPSS 31.46%
  • Published 24.12.2014 18:59:01
  • Last modified 12.04.2025 10:46:40

Double free vulnerability in the jas_iccattrval_destroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file.

7.5

CVE-2004-2771

Exploit
  • EPSS 3.29%
  • Published 24.12.2014 18:59:00
  • Last modified 12.04.2025 10:46:40

The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.

4.9

CVE-2014-8867

  • EPSS 0.13%
  • Published 01.12.2014 15:59:09
  • Last modified 12.04.2025 10:46:40

The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM guests to cause a denial of service (host crash) v...

5.5

CVE-2014-3690

  • EPSS 0.01%
  • Published 10.11.2014 11:55:07
  • Last modified 12.04.2025 10:46:40

arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or caus...