|
191
|
4.4
-
|
MEDIUM
Local
|
A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw …
|
CWE-125
Out-of-bounds Read
|
CVE-2023-39194
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:14
2023-10-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
192
|
6.0
-
|
MEDIUM
Local
|
A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an ou…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-39193
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:14
2023-10-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
193
|
6.0
-
|
MEDIUM
Local
|
A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-39192
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:14
2023-10-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
194
|
6.0
-
|
MEDIUM
Local
|
A flaw was found in the Netfilter subsystem in the Linux kernel. The nfnl_osf_add_callback function did not validate the user mode controlled opt_num field. This flaw allows a local privileged (CAP_N…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-39189
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:14
2023-10-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2023-5366
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 17:41
2023-10-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196
|
5.5
-
|
MEDIUM
Local
|
A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-42754
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:23
2023-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
197
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-42755
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:23
2023-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198
|
6.5
-
|
MEDIUM
Network
|
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code vi…
|
CWE-122
Heap-based Buffer Overflow
|
CVE-2023-41175
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-24 21:15
2023-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199
|
6.5
-
|
MEDIUM
Network
|
LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2023-40745
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:20
2023-10-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
200
|
5.5
-
|
MEDIUM
Local
|
A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2023-3576
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:17
2023-10-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|