|
221
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as s…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-4042
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222
|
7.8
-
|
HIGH
Local
|
A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods …
|
CWE-863
Incorrect Authorization
|
CVE-2023-3899
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:18
2023-08-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223
|
5.5
-
|
MEDIUM
Local
|
A NULL pointer dereference flaw was found in vmxnet3_rq_cleanup in drivers/net/vmxnet3/vmxnet3_drv.c in the networking sub-component in vmxnet3 in the Linux Kernel. This issue may allow a local attac…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-4459
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:35
2023-08-22
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224
|
7.1
-
|
HIGH
Local
|
A use-after-free flaw was found in vmxnet3_rq_alloc_rx_buf in drivers/net/vmxnet3/vmxnet3_drv.c in VMware's vmxnet3 ethernet NIC driver in the Linux Kernel. This issue could allow a local attacker to…
|
CWE-416
Use After Free
|
CVE-2023-4387
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 17:35
2023-08-17
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
225
|
4.3
-
|
MEDIUM
Network
|
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forb…
|
NVD-CWE-noinfo
|
CVE-2023-39418
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:15
2023-08-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
226
|
8.8
-
|
HIGH
Network
|
IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct (dollar quoting, '', or ""). If an adm…
|
CWE-89
SQL Injection
|
CVE-2023-39417
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:15
2023-08-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
227
|
6.5
-
|
MEDIUM
Local
|
Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable in…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2022-40982
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 16:22
2023-08-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
228
|
6.7
-
|
MEDIUM
Local
|
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries f…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-4273
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
229
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing…
|
-
|
CVE-2023-4194
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
230
|
7.8
-
|
HIGH
Local
|
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the sy…
|
CWE-416
Use After Free
|
CVE-2023-4147
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 17:34
2023-08-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|