Debian

Debian Linux

9141 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-4207

  • EPSS 0.03%
  • Published 06.09.2023 14:15:11
  • Last modified 13.02.2025 17:17:16

A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. When fw_change() is called on an existing filter, the whole tcf_result struct is always copied into the new inst...

7.8

CVE-2023-4208

  • EPSS 0.03%
  • Published 06.09.2023 14:15:11
  • Last modified 13.02.2025 17:17:16

A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. When u32_change() is called on an existing filter, the whole tcf_result struct is always copied into the new in...

7

CVE-2023-4244

  • EPSS 0.02%
  • Published 06.09.2023 14:15:11
  • Last modified 13.02.2025 17:17:16

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a race condition between nf_tables netlink control plane transaction and nft_set element garbage colle...

7.8

CVE-2023-3777

  • EPSS 0.04%
  • Published 06.09.2023 14:15:10
  • Last modified 20.03.2025 17:00:02

A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain'...

8.1

CVE-2023-4761

  • EPSS 0.37%
  • Published 05.09.2023 22:15:09
  • Last modified 21.11.2024 08:35:55

Out of bounds memory access in FedCM in Google Chrome prior to 116.0.5845.179 allowed a remote attacker who had compromised the renderer process to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-4762

Warning
  • EPSS 30.81%
  • Published 05.09.2023 22:15:09
  • Last modified 20.12.2024 18:21:05

Type Confusion in V8 in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to execute arbitrary code via a crafted HTML page. (Chromium security severity: High)

8.8

CVE-2023-4763

  • EPSS 0.78%
  • Published 05.09.2023 22:15:09
  • Last modified 05.05.2025 16:15:50

Use after free in Networks in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

6.5

CVE-2023-4764

  • EPSS 0.15%
  • Published 05.09.2023 22:15:09
  • Last modified 21.11.2024 08:35:56

Incorrect security UI in BFCache in Google Chrome prior to 116.0.5845.179 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. (Chromium security severity: High)

7.8

CVE-2023-4781

Exploit
  • EPSS 0.03%
  • Published 05.09.2023 19:15:49
  • Last modified 21.11.2024 08:35:58

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.

7.5

CVE-2023-41909

  • EPSS 0.08%
  • Published 05.09.2023 07:15:14
  • Last modified 21.11.2024 08:21:53

An issue was discovered in FRRouting FRR through 9.0. bgp_nlri_parse_flowspec in bgpd/bgp_flowspec.c processes malformed requests with no attributes, leading to a NULL pointer dereference.