Oracle

Linux

228 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-3551

  • EPSS 0.02%
  • Veröffentlicht 16.02.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:21:49

A flaw was found in the PKI-server, where the spkispawn command, when run in debug mode, stores admin credentials in the installation log file. This flaw allows a local attacker to retrieve the file to obtain the admin password and gain admin privile...

7.2

CVE-2021-2464

  • EPSS 0.06%
  • Veröffentlicht 24.09.2021 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:03:10

Vulnerability in Oracle Linux (component: OSwatcher). Supported versions that are affected are 7 and 8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle Linux executes to compromise Oracle ...

7.5

CVE-2018-17962

Exploit
  • EPSS 0.26%
  • Veröffentlicht 09.10.2018 22:29:00
  • Zuletzt bearbeitet 21.11.2024 03:55:17

Qemu has a Buffer Overflow in pcnet_receive in hw/net/pcnet.c because an incorrect integer data type is used.

7.5

CVE-2015-7691

  • EPSS 13.6%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted packets containing particular autokey operations. NOTE: This vulnerability exists due to a...

7.5

CVE-2015-7692

  • EPSS 14.77%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

7.5

CVE-2015-7701

  • EPSS 14.33%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

Memory leak in the CRYPTO_ASSOC function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (memory consumption).

6.5

CVE-2015-7702

  • EPSS 2.1%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash). NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-9750.

5.9

CVE-2015-7852

  • EPSS 3.19%
  • Veröffentlicht 07.08.2017 20:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.

7.5

CVE-2015-7703

  • EPSS 9.42%
  • Veröffentlicht 24.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and w...

7.5

CVE-2015-5219

  • EPSS 2.24%
  • Veröffentlicht 21.07.2017 14:29:00
  • Zuletzt bearbeitet 13.05.2026 00:24:29

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service (infinite loop) via a crafted NTP packet.