|
71
|
4.3
-
|
MEDIUM
Physics
|
A vulnerability was found in OpenSC, OpenSC tools, PKCS#11 module, minidriver, and CTK. An attacker could use a crafted USB Device or Smart Card, which would present the system with a specially craft…
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-45619
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-09-24 08:26
2024-09-4
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
72
|
7.5
-
|
HIGH
Network
|
An issue was discovered in FRRouting (FRR) through 10.1. bgp_attr_encap in bgpd/bgp_attr.c does not check the actual remaining stream length before taking the TLV value.
|
NVD-CWE-noinfo
|
CVE-2024-44070
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-08-31 01:19
2024-08-19
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
73
|
7.5
-
|
HIGH
Network
|
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap sp…
|
-
|
CVE-2024-7006
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 18:50
2024-08-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
74
|
7.7
-
|
HIGH
Network
|
A flaw was found in Podman. This issue may allow an attacker to create a specially crafted container that, when configured to share the same IPC with at least one other container, can create a large …
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2024-3056
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-10-16 14:15
2024-08-3
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
75
|
6.5
-
|
MEDIUM
Network
|
A flaw was found in the 389 Directory Server. This flaw allows an unauthenticated user to cause a systematic server crash while sending a specific extended search request, leading to a denial of serv…
|
NVD-CWE-noinfo
|
CVE-2024-6237
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 18:49
2024-07-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
76
|
6.8
-
|
MEDIUM
Network
|
A flaw was found in the virtio-net device in QEMU. When enabling the RSS feature on the virtio-net network card, the indirections_table data within RSS becomes controllable. Setting excessively large…
|
-
|
CVE-2024-6505
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 18:49
2024-07-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
77
|
8.1
-
|
HIGH
Network
|
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote a…
|
CWE-362
Race Condition
|
CVE-2024-6387
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 18:49
2024-07-1
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
78
|
7.5
-
|
HIGH
Network
|
A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using certain malformed input files, an attacker could cause the utility to c…
|
NVD-CWE-noinfo
|
CVE-2024-6239
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 18:49
2024-06-21
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
79
|
8.1
-
|
HIGH
Network
|
A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is different for each new session, which protects it from brute force attac…
|
-
|
CVE-2024-3183
|
cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 18:29
2024-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
80
|
6.7
-
|
MEDIUM
Local
|
A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the pe…
|
-
|
CVE-2024-5742
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 18:48
2024-06-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|