Filter
AND
Red Hat Enterprise LinuxLibopensc: incorrect handling length of buffers or files in libopensc
4.3
First published (updated )
Red Hat Enterprise LinuxLibopensc: uninitialized values after incorrect or missing checking return values of functions in pkcs15init
3.9
First published (updated )
Red Hat Enterprise LinuxLibopensc: incorrect handling of the length of buffers or files in pkcs15init
6.8
First published (updated )
maven/org.keycloak:keycloak-servicesWildfly-elytron: org.keycloak/keycloak-services: session fixation in elytron saml adapters
8.1
EPSS
0.24%
First published (updated )
Red Hat Enterprise LinuxNano: running `chmod` and `chown` on the filename allows malicious user to replace the emergency file with a malicious symlink to a root-owned file
6.7
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat Enterprise LinuxXorg-x11-server: selinux context corruption
7.8
EPSS
0.04%
First published (updated )
Red Hat OpenShift Container PlatformKeycloak: offline session token dos
7.7
EPSS
0.09%
First published (updated )
Debian Debian LinuxXorg-x11-server: out-of-bounds memory read in rrchangeoutputproperty and rrchangeproviderproperty
7.6
EPSS
0.18%
First published (updated )
Debian Debian LinuxXorg-x11-server: out-of-bounds memory reads/writes in xkb button actions
7.8
EPSS
21.00%
First published (updated )
Red Hat OpenShift Container PlatformKeycloak: reflected xss via wildcard in oidc redirect_uri
5.4
EPSS
0.10%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: stored xss in quiz grading report via user id number
5.4
First published (updated )
Linux Linux kernelKernel: netfilter: potential slab-out-of-bound access due to integer underflow
7.8
First published (updated )
Red Hat Enterprise LinuxFloating point exception in src/aiff.c
6.2
First published (updated )
ImageMagick ImageMagickInput Validation, Command Injection, OS Command Injection
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apple iPadOSApple Multiple Products WebKit Use-After-Free Vulnerability
First published (updated )
Red Hat OpenShift Container PlatformKeycloak: oauth client impersonation
7.1
First published (updated )
Red Hat Enterprise LinuxA flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able …
7.8
First published (updated )
redhat/rh-sso7-keycloakKeycloak: session takeover with oidc offline refreshtokens
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
PostgreSQL PostgreSQLA vulnerability was found in PostgreSQL. This attack requires permission to create non-temporary obj…
8
First published (updated )
redhat/dpdkA permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to c…
8.6
First published (updated )
ubuntu/avahiA vulnerability was found in the avahi library. This flaw allows an unprivileged user to make a dbus…
6.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Fedoraproject FedoraA flaw was found in buildah, where containers were incorrectly started with non-empty default permis…
6.8
First published (updated )
redhat/log4jDeserialization of untrusted data in JMSAppender in Apache Log4j 1.2
8.1
First published (updated )
redhat/eap7-wildflyThere was a vulnerability found in wildfly, where incorrect JBOSS_LOCAL_USER challenge location whe…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.