|
241
|
7.8
-
|
HIGH
Local
|
A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-3640
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:17
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
242
|
7.1
-
|
HIGH
Local
|
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak int…
|
CWE-416
Use After Free
|
CVE-2023-3567
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:17
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
243
|
6.5
-
|
MEDIUM
Local
|
A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resu…
|
CWE-416
Use After Free
|
CVE-2023-3019
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 17:16
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
244
|
6.7
-
|
MEDIUM
Local
|
A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior …
|
CWE-415
Double Free
|
CVE-2023-33952
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:06
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
245
|
5.3
-
|
MEDIUM
Local
|
A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operatio…
|
CWE-362 CWE-667
Race Condition Improper Locking
|
CVE-2023-33951
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:06
2023-07-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246
|
5.9
-
|
MEDIUM
Network
|
A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured "server signing = required" or for SMB2 connections to Domain Contro…
|
NVD-CWE-noinfo
|
CVE-2023-3347
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:17
2023-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247
|
5.3
-
|
MEDIUM
Network
|
A path disclosure vulnerability was found in Samba. As part of the Spotlight protocol, Samba discloses the server-side absolute path of shares, files, and directories in the results for search querie…
|
NVD-CWE-noinfo
|
CVE-2023-34968
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:07
2023-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248
|
5.9
-
|
MEDIUM
Network
|
An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbindd_pam_auth_crap.c. When performing NTLM authentication, the client replies to cryptographic challeng…
|
CWE-125
Out-of-bounds Read
|
CVE-2022-2127
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 16:00
2023-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249
|
5.3
-
|
MEDIUM
Network
|
A Type Confusion vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets, one encoded data structure is a key-value style dictionary where the k…
|
CWE-843
Type Confusion
|
CVE-2023-34967
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:07
2023-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250
|
7.5
-
|
HIGH
Network
|
An infinite loop vulnerability was found in Samba's mdssvc RPC service for Spotlight. When parsing Spotlight mdssvc RPC packets sent by the client, the core unmarshalling function sl_unpack_loop() di…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2023-34966
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:07
2023-07-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|