Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-12087 |
|
Path Traversal in path-traversal (CVE-2024-12087)
path traversal in path-traversal (CVE-2024-12087). Data can be tampered with by attackers.
|
| CVE-2024-12088 |
|
Path Traversal in path-traversal (CVE-2024-12088)
path traversal in path-traversal (CVE-2024-12088). Data can be tampered with by attackers.
|
| CVE-2024-12085 |
|
Vulnerability in samba (CVE-2024-12085)
vulnerability in samba (CVE-2024-12085). Confidential information can be exposed externally.
|
| CVE-2024-49394 |
|
Vulnerability in mutt (CVE-2024-49394)
vulnerability in mutt (CVE-2024-49394). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-49395 |
|
Vulnerability in mutt (CVE-2024-49395)
vulnerability in mutt (CVE-2024-49395). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-49393 |
|
Vulnerability in mutt (CVE-2024-49393)
vulnerability in mutt (CVE-2024-49393). Confidential information can be exposed externally.
|
| CVE-2024-51127 |
|
Path Traversal in redhat (CVE-2024-51127)
path traversal in redhat (CVE-2024-51127). Confidential information can be exposed externally.
|
| CVE-2024-10041 |
|
Vulnerability in linux-pam (CVE-2024-10041)
vulnerability in linux-pam (CVE-2024-10041). Confidential information can be exposed externally.
|
| CVE-2024-9675 |
|
Path Traversal in buildah-project (CVE-2024-9675)
path traversal in buildah-project (CVE-2024-9675). Successful exploitation can lead to full system takeover. Exploitable via ``RUN``.
|
| CVE-2024-8443 |
|
Vulnerability in opensc-project (CVE-2024-8443)
vulnerability in opensc-project (CVE-2024-8443). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45617 |
|
Vulnerability in redhat (CVE-2024-45617)
vulnerability in redhat (CVE-2024-45617). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45618 |
|
Vulnerability in redhat (CVE-2024-45618)
vulnerability in redhat (CVE-2024-45618). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45619 |
|
Vulnerability in redhat (CVE-2024-45619)
vulnerability in redhat (CVE-2024-45619). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45620 |
|
Vulnerability in redhat (CVE-2024-45620)
vulnerability in redhat (CVE-2024-45620). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45615 |
|
Vulnerability in redhat (CVE-2024-45615)
vulnerability in redhat (CVE-2024-45615). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-45616 |
|
Vulnerability in redhat (CVE-2024-45616)
vulnerability in redhat (CVE-2024-45616). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-39328 |
|
Vulnerability in uclouvain (CVE-2023-39328)
vulnerability in uclouvain (CVE-2023-39328). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-6387 |
|
Vulnerability in sonicwall (CVE-2024-6387)
vulnerability in sonicwall (CVE-2024-6387). Successful exploitation can lead to full system takeover.
|
| CVE-2023-50781 |
|
Vulnerability in redhat (CVE-2023-50781)
vulnerability in redhat (CVE-2023-50781). Confidential information can be exposed externally.
|
| CVE-2023-40548 |
|
Vulnerability in redhat (CVE-2023-40548)
vulnerability in redhat (CVE-2023-40548). Successful exploitation can lead to full system takeover.
|
| CVE-2023-52356 |
|
Vulnerability in dos (CVE-2023-52356)
vulnerability in dos (CVE-2023-52356). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-40547 |
|
Out-of-Bounds Write in redhat (CVE-2023-40547)
out-of-bounds write in redhat (CVE-2023-40547). Successful exploitation can lead to full system takeover.
|
| CVE-2024-0193 |
|
Use-After-Free in redhat (CVE-2024-0193)
vulnerability in redhat (CVE-2024-0193). Successful exploitation can lead to full system takeover.
|
| CVE-2023-51767 |
|
Vulnerability in openbsd (CVE-2023-51767)
vulnerability in openbsd (CVE-2023-51767). Successful exploitation can lead to full system takeover.
|
| CVE-2023-48795 |
|
Vulnerability in russh (CVE-2023-48795)
vulnerability in russh (CVE-2023-48795). Data can be tampered with by attackers. Mitigation: upgrade to `0.40.2` or later.
|
| CVE-2023-6478 |
|
Vulnerability in xorg (CVE-2023-6478)
vulnerability in xorg (CVE-2023-6478). Confidential information can be exposed externally.
|
| CVE-2023-6377 |
|
Out-of-Bounds Read in privilege-escalation (CVE-2023-6377)
vulnerability in privilege-escalation (CVE-2023-6377). Successful exploitation can lead to full system takeover.
|
| CVE-2023-5868 |
|
Vulnerability in postgresql (CVE-2023-5868)
vulnerability in postgresql (CVE-2023-5868). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-4911 KEV |
|
[KEV] Vulnerability in Gnu c (CVE-2023-4911)
vulnerability in Gnu c (CVE-2023-4911). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2023-6121 |
|
Out-of-Bounds Read in redhat (CVE-2023-6121)
vulnerability in redhat (CVE-2023-6121). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-5574 |
|
Use-After-Free in dos (CVE-2023-5574)
vulnerability in dos (CVE-2023-5574). Successful exploitation can lead to full system takeover.
|
| CVE-2023-5380 |
|
Use-After-Free in xorg (CVE-2023-5380)
vulnerability in xorg (CVE-2023-5380). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-5367 |
|
Out-of-Bounds Write in c (CVE-2023-5367)
out-of-bounds write in c (CVE-2023-5367). Successful exploitation can lead to full system takeover.
|
| CVE-2023-44487 KEV |
|
[KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
|
| CVE-2023-3576 |
|
Buffer Overflow in dos (CVE-2023-3576)
vulnerability in dos (CVE-2023-3576). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-0833 |
|
Vulnerability in squareup (CVE-2023-0833)
vulnerability in squareup (CVE-2023-0833). Confidential information can be exposed externally.
|
| CVE-2023-4527 |
|
Vulnerability in gnu (CVE-2023-4527)
vulnerability in gnu (CVE-2023-4527). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-4806 |
|
Use-After-Free in gnu (CVE-2023-4806)
vulnerability in gnu (CVE-2023-4806). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-38559 |
|
Out-of-Bounds Read in c (CVE-2023-38559)
vulnerability in c (CVE-2023-38559). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-3640 |
|
Vulnerability in c (CVE-2023-3640)
vulnerability in c (CVE-2023-3640). Successful exploitation can lead to full system takeover.
|
| CVE-2023-3019 |
|
Use-After-Free in dos (CVE-2023-3019)
vulnerability in dos (CVE-2023-3019). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-1652 |
|
Use-After-Free in c (CVE-2023-1652)
vulnerability in c (CVE-2023-1652). Confidential information can be exposed externally.
|
| CVE-2022-3775 |
|
Out-of-Bounds Write in gnu (CVE-2022-3775)
out-of-bounds write in gnu (CVE-2022-3775). Data can be tampered with by attackers.
|
| CVE-2022-2601 |
|
Vulnerability in gnu (CVE-2022-2601)
vulnerability in gnu (CVE-2022-2601). Successful exploitation can lead to full system takeover.
|
| CVE-2021-4040 |
|
Vulnerability in redhat (CVE-2021-4040)
vulnerability in redhat (CVE-2021-4040). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-13785 |
|
Vulnerability in c (CVE-2018-13785)
vulnerability in c (CVE-2018-13785). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2808 |
|
Vulnerability in oracle (CVE-2015-2808)
vulnerability in oracle (CVE-2015-2808). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-4104 |
|
Unsafe Deserialization in apache (CVE-2021-4104)
vulnerability in apache (CVE-2021-4104). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14491 |
|
Out-of-Bounds Write in platform/external/dnsmasq (CVE-2017-14491)
out-of-bounds write in platform/external/dnsmasq (CVE-2017-14491). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `11:2021-03-01` or later.
|
| CVE-2019-11135 |
|
Vulnerability in opensuse (CVE-2019-11135)
vulnerability in opensuse (CVE-2019-11135). Confidential information can be exposed externally.
|