Filters
Linux-pam Linux-pamPam: libpam: libpam vulnerable to read hashed password
4.7
First published (updated )
Redhat Enterprise LinuxQemu-kvm: usb: assertion failure in usb_ep_get()
5.5
EPSS
0.04%
First published (updated )
Redhat Enterprise LinuxLibopensc: heap buffer overflow in openpgp driver when generating key
2.9
EPSS
0.04%
First published (updated )
Redhat Enterprise LinuxLibopensc: uninitialized values after incorrect check or usage of apdu response values in libopensc
3.9
First published (updated )
Redhat Enterprise LinuxLibopensc: incorrect handling length of buffers or files in libopensc
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise LinuxLibopensc: pkcs15init: usage of uninitialized values in libopensc and pkcs15init
3.9
First published (updated )
Redhat Enterprise LinuxLibopensc: uninitialized values after incorrect or missing checking return values of functions in libopensc
3.9
First published (updated )
Redhat Enterprise LinuxLibopensc: uninitialized values after incorrect or missing checking return values of functions in pkcs15init
3.9
First published (updated )
Redhat Enterprise LinuxLibopensc: incorrect handling of the length of buffers or files in pkcs15init
6.8
First published (updated )
maven/org.keycloak:keycloak-servicesWildfly-elytron: org.keycloak/keycloak-services: session fixation in elytron saml adapters
8.1
EPSS
0.24%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise LinuxPoppler: pdfinfo: crash in broken documents when using -dests parameter
7.5
EPSS
0.05%
First published (updated )
Redhat Enterprise LinuxNano: running `chmod` and `chown` on the filename allows malicious user to replace the emergency file with a malicious symlink to a root-owned file
6.7
EPSS
0.04%
First published (updated )
maven/org.keycloak:keycloak-servicesKeycloak: potential bypass of brute force protection
6.5
First published (updated )
Redhat Enterprise Linux For Power Little Endian EusBooth: specially crafted hash can lead to invalid hmac being accepted by booth server
5.9
First published (updated )
Redhat Enterprise Linux AusFreeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/FreeIPAFreeipa: delegation rules allow a proxy service to impersonate any user to access another target service
8.8
First published (updated )
Fedoraproject FedoraOpensc: memory use after free in authentic driver when updating token info
3.4
First published (updated )
Microsoft Windows Server 2012Unbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities
7.5
First published (updated )
Redhat Enterprise LinuxXorg-x11-server: selinux context corruption
7.8
EPSS
0.04%
First published (updated )
Redhat Enterprise LinuxXorg-x11-server: selinux unlabeled glx pbuffer
5.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise Linux EusXorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access
7.8
First published (updated )
Redhat Single Sign-onKeycloak: offline session token dos
7.7
EPSS
0.09%
First published (updated )
Debian Debian LinuxXorg-x11-server: out-of-bounds memory read in rrchangeoutputproperty and rrchangeproviderproperty
7.6
EPSS
0.18%
First published (updated )
Debian Debian LinuxXorg-x11-server: out-of-bounds memory reads/writes in xkb button actions
7.8
EPSS
21.00%
First published (updated )
Redhat Single Sign-onKeycloak: redirect_uri validation bypass
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apple iOSLibtiff: out-of-memory in tiffopen via a craft file
6.5
EPSS
0.18%
First published (updated )
Redhat Enterprise LinuxKernel: marvin vulnerability side-channel leakage in the rsa decryption operation
6.5
First published (updated )
Redhat Enterprise LinuxKernel: nvme: info leak due to out-of-bounds read in nvmet_ctrl_find_get
4.3
EPSS
0.11%
First published (updated )
Redhat Enterprise LinuxCpio: extraction allows symlinks which enables remote command execution
5.3
First published (updated )
Redhat Single Sign-onKeycloak: reflected xss via wildcard in oidc redirect_uri
5.4
EPSS
0.10%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Enterprise LinuxOpensc: side-channel leaks while stripping encryption pkcs#1 padding
5.9
First published (updated )
Redhat Enterprise LinuxSquid: dos against http and https
7.5
EPSS
0.99%
First published (updated )
ubuntu/xorg-serverXorg-x11-server: use-after-free bug in destroywindow
4.7
First published (updated )
redhat/xorg-serverXorg-x11-server: use-after-free bug in damagedestroy
7
First published (updated )
redhat/moodleMoodle: xss risk when previewing data in course upload tool
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Moodle MoodleMoodle: stored xss in quiz grading report via user id number
5.4
First published (updated )
redhat/moodleMoodle: stored xss and potential idor risk in wiki comments
6.5
First published (updated )
ubuntu/xorg-serverXorg-x11-server: out-of-bounds write in xichangedeviceproperty/rrchangeoutputproperty
7.8
First published (updated )
ubuntu/imagemagickImagemagick: heap use-after-free in coders/bmp.c
6.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Libtiff LibtiffLibtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c
5.5
EPSS
0.04%
First published (updated )
Linux Linux kernelKernel: netfilter: potential slab-out-of-bound access due to integer underflow
7.8
First published (updated )
ubuntu/glibcGlibc: potential use-after-free in getaddrinfo()
5.9
First published (updated )
Microsoft Windows 10Shim: rce in http boot support may lead to secure boot bypass
8.3
First published (updated )
Redhat Jboss Enterprise Application PlatformWildfly-core: management user rbac permission allows unexpected reading of system-properties to an unauthorized actor
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/insights-clientInsights-client: unsafe handling of temporary files and directories
7.8
First published (updated )
ubuntu/intel-microcodeXen Security Advisory 435 v1 (CVE-2022-40982) - x86/Intel: Gather Data Sampling
6.5
First published (updated )
ubuntu/sambaSamba: out-of-bounds read in winbind auth_crap
7.5
First published (updated )
Linux Linux kernelKernel: vmxnet3: use-after-free in vmxnet3_rq_alloc_rx_buf()
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.