1
|
6.5
-
|
MEDIUM
Network
|
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during P…
|
CWE-287
Improper Authentication
|
CVE-2023-52160
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-03-10 13:15
2024-02-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2
|
7.5
-
|
HIGH
Network
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, ak…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2023-50387
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-03-8 02:15
2024-02-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
3
|
7.5
-
|
HIGH
Network
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6536
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-04-15 23:15
2024-02-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
4
|
7.5
-
|
HIGH
Network
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6535
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-04-26 01:15
2024-02-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
5
|
7.5
-
|
HIGH
Network
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6356
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-04-26 01:15
2024-02-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
6
|
3.3
-
|
LOW
Local
|
A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the origina…
|
CWE-459
Incomplete Cleanup
|
CVE-2024-1048
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-04-30 23:15
2024-02-7
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
7
|
5.5
-
|
MEDIUM
Local
|
An information disclosure flaw was found in ansible-core due to a failure to respect the ANSIBLE_NO_LOG configuration in some scenarios. Information is still included in the output in certain tasks, …
|
CWE-116
Improper Encoding or Escaping of Output
|
CVE-2024-0690
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-04-30 23:15
2024-02-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
8
|
7.5
-
|
HIGH
Network
A flaw was found in the python-cryptography package. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confi…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-50782
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-02-27 01:27
2024-02-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
9
|
7.5
-
|
HIGH
Network
A flaw was found in m2crypto. This issue may allow a remote attacker to decrypt captured messages in TLS servers that use RSA key exchanges, which may lead to exposure of confidential or sensitive da…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2023-50781
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-02-27 01:27
2024-02-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
10
|
5.3
-
|
MEDIUM
Local
|
A path traversal vulnerability was found in the CPIO utility. This issue could allow a remote unauthenticated attacker to trick a user into opening a specially crafted archive. During the extraction …
|
CWE-59
Link Following
|
CVE-2023-7216
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-05-14 08:15
2024-02-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|