Redhat

Enterprise Linux Server

1890 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2015-3329

Exploit
  • EPSS 28.15%
  • Published 09.06.2015 18:59:02
  • Last modified 12.04.2025 10:46:40

Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allow remote attackers to execute arbitrary code via a crafted length value in a (1) tar, (2) ph...

7.5

CVE-2015-3307

Exploit
  • EPSS 18.41%
  • Published 09.06.2015 18:59:01
  • Last modified 12.04.2025 10:46:40

The phar_parse_metadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (heap metadata corruption) or possibly have unspecified other impact via a craf...

5.8

CVE-2015-2783

Exploit
  • EPSS 9.68%
  • Published 09.06.2015 18:59:00
  • Last modified 12.04.2025 10:46:40

ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read and application crash) via a crafted length v...

6.8

CVE-2015-0797

  • EPSS 7.61%
  • Published 14.05.2015 10:59:00
  • Last modified 12.04.2025 10:46:40

GStreamer before 1.4.5, as used in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 on Linux, allows remote attackers to cause a denial of service (buffer over-read and application crash) or possibly execute arbi...

5.8

CVE-2015-1863

  • EPSS 5.38%
  • Published 28.04.2015 14:59:01
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in wpa_supplicant 1.0 through 2.4 allows remote attackers to cause a denial of service (crash), read memory, or possibly execute arbitrary code via crafted SSID information in a management frame when creating or updating P2...

6.8

CVE-2015-1774

  • EPSS 30.87%
  • Published 28.04.2015 14:59:00
  • Last modified 12.04.2025 10:46:40

The HWP filter in LibreOffice before 4.3.7 and 4.4.x before 4.4.2 and Apache OpenOffice before 4.1.2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted HWP document, which triggers an out-of-...

4.3

CVE-2015-1241

Exploit
  • EPSS 2.19%
  • Published 19.04.2015 10:59:05
  • Last modified 12.04.2025 10:46:40

Google Chrome before 42.0.2311.90 does not properly consider the interaction of page navigation with the handling of touch events and gesture events, which allows remote attackers to trigger unintended UI actions via a crafted web site that conducts ...

4

CVE-2015-2573

  • EPSS 0.41%
  • Published 16.04.2015 17:00:05
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote authenticated users to affect availability via vectors related to DDL.

4

CVE-2015-2571

  • EPSS 0.41%
  • Published 16.04.2015 17:00:04
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.42 and earlier, and 5.6.23 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Optimizer.

5

CVE-2015-2568

  • EPSS 4.02%
  • Published 16.04.2015 17:00:02
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.41 and earlier, and 5.6.22 and earlier, allows remote attackers to affect availability via unknown vectors related to Server : Security : Privileges.