CVE-2023-40587
- EPSS 0.63%
- Veröffentlicht 25.08.2023 21:15:09
- Zuletzt bearbeitet 21.11.2024 08:19:46
Pyramid is an open source Python web framework. A path traversal vulnerability in Pyramid versions 2.0.0 and 2.0.1 impacts users of Python 3.11 that are using a Pyramid static view with a full filesystem path and have a `index.html` file that is loca...
CVE-2023-38201
- EPSS 0.46%
- Veröffentlicht 25.08.2023 17:15:08
- Zuletzt bearbeitet 21.11.2024 08:13:04
A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registration. This issue may allow an attacker to impersonate an agent and hide the true status of a monitored machine if the fake age...
CVE-2023-3899
- EPSS 0.25%
- Veröffentlicht 23.08.2023 11:15:07
- Zuletzt bearbeitet 21.11.2024 08:18:19
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the reg...
CVE-2023-4427
- EPSS 33.98%
- Veröffentlicht 23.08.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 08:35:07
Out of bounds memory access in V8 in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4428
- EPSS 10.87%
- Veröffentlicht 23.08.2023 00:15:09
- Zuletzt bearbeitet 01.07.2025 14:15:30
Out of bounds memory access in CSS in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4429
- EPSS 0.94%
- Veröffentlicht 23.08.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 08:35:07
Use after free in Loader in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4430
- EPSS 8.8%
- Veröffentlicht 23.08.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 08:35:08
Use after free in Vulkan in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4431
- EPSS 0.95%
- Veröffentlicht 23.08.2023 00:15:09
- Zuletzt bearbeitet 21.11.2024 08:35:08
Out of bounds memory access in Fonts in Google Chrome prior to 116.0.5845.110 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: Medium)
CVE-2022-48065
- EPSS 0.65%
- Veröffentlicht 22.08.2023 19:16:31
- Zuletzt bearbeitet 21.11.2024 07:32:46
GNU Binutils before 2.40 was discovered to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
CVE-2022-48541
- EPSS 1.19%
- Veröffentlicht 22.08.2023 19:16:31
- Zuletzt bearbeitet 04.11.2025 19:15:41
A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial of service via the "identify -help" command.