Debian

Debian Linux

9142 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-28709

  • EPSS 0.25%
  • Published 22.05.2023 11:15:09
  • Last modified 13.02.2025 17:16:16

The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using...

7.8

CVE-2023-33204

  • EPSS 0.03%
  • Published 18.05.2023 08:15:08
  • Last modified 22.01.2025 15:15:09

sysstat through 12.7.2 allows a multiplication integer overflow in check_overflow in common.c. NOTE: this issue exists because of an incomplete fix for CVE-2022-39377.

8.8

CVE-2023-24805

Exploit
  • EPSS 8.85%
  • Published 17.05.2023 18:15:09
  • Last modified 21.11.2024 07:48:25

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. If you use the Backend Error Handler (beh) to create an accessible network printer, this security vul...

8.8

CVE-2023-2721

  • EPSS 0.23%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:35

Use after free in Navigation in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)

8.8

CVE-2023-2722

  • EPSS 0.31%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:35

Use after free in Autofill UI in Google Chrome on Android prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2723

  • EPSS 16.46%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Use after free in DevTools in Google Chrome prior to 113.0.5672.126 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2724

  • EPSS 12.75%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Type confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2725

  • EPSS 11.27%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Use after free in Guest View in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-2726

  • EPSS 0.03%
  • Published 16.05.2023 19:15:09
  • Last modified 05.05.2025 16:15:36

Inappropriate implementation in WebApp Installs in Google Chrome prior to 113.0.5672.126 allowed an attacker who convinced a user to install a malicious web app to bypass install dialog via a crafted HTML page. (Chromium security severity: Medium)

7.8

CVE-2023-2124

Exploit
  • EPSS 0.02%
  • Published 15.05.2023 22:15:12
  • Last modified 21.11.2024 07:57:58

An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the s...