|
291
|
6.7
-
|
MEDIUM
Local
|
A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cau…
|
CWE-416
Use After Free
|
CVE-2023-2513
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 16:58
2023-05-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292
|
7.8
-
|
HIGH
Local
|
In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged l…
|
CWE-416
Use After Free
|
CVE-2023-32233
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 17:02
2023-05-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293
|
7.8
-
|
HIGH
Local
|
Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer < 1.1.0 and installations that include apptainer-suid …
|
-
|
CVE-2023-30549
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 17:00
2023-04-26
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294
|
4.4
-
|
MEDIUM
Local
|
A flaw was found in the Linux kernel's netdevsim device driver, within the scheduling of events. This issue results from the improper management of a reference count. This may allow an attacker to cr…
|
NVD-CWE-Other
|
CVE-2023-2019
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 16:57
2023-04-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295
|
6.7
-
|
MEDIUM
Local
|
An out-of-bounds write vulnerability was found in the Linux kernel's SLIMpro I2C device driver. The userspace "data->block[0]" variable was not capped to a number between 0-255 and was used as the si…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-2194
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:58
2023-04-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296
|
5.5
-
|
MEDIUM
Local
|
A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-28328
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:54
2023-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297
|
5.5
-
|
MEDIUM
Local
|
A NULL pointer dereference flaw was found in the UNIX protocol in net/unix/diag.c In unix_diag_get_exact in the Linux Kernel. The newly allocated skb does not have sk, leading to a NULL pointer. This…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-28327
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 16:54
2023-04-20
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298
|
7.8
-
|
HIGH
Local
|
A vulnerability was found in the device-mapper-multipath. The device-mapper-multipath allows local users to obtain root access, exploited alone or in conjunction with CVE-2022-41973. Local users that…
|
NVD-CWE-Other
|
CVE-2022-3787
|
cpe:2.3:o:redhat:enterprise_linux:9.1:* cpe:2.3:o:redhat:enterprise_linux:8.7:*
|
|
|
|
|
2024-11-21 16:20
2023-03-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
299
|
7.1
-
|
HIGH
Local
|
A use-after-free flaw was found in nfsd4_ssc_setup_dul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a…
|
CWE-416
Use After Free
|
CVE-2023-1652
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 16:39
2023-03-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
300
|
7.8
-
|
HIGH
Local
|
A flaw was found in the QEMU Guest Agent service for Windows. A local unprivileged user may be able to manipulate the QEMU Guest Agent's Windows installer via repair custom actions to elevate their p…
|
CWE-269
Improper Privilege Management
|
CVE-2023-0664
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 16:37
2023-03-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|