|
81
|
5.9
-
|
MEDIUM
Network
|
A flaw was found in Booth, a cluster ticket manager. If a specially-crafted hash is passed to gcry_md_get_algo_dlen(), it may allow an invalid HMAC to be accepted by the Booth server.
|
-
|
CVE-2024-3049
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 18:28
2024-06-6
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
82
|
5.5
-
|
MEDIUM
Local
|
A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function in hw/net/net_tx_pkt.c when trying to calculate the checksum of a short-sized fragmented packet. This…
|
-
|
CVE-2024-3567
|
cpe:2.3:o:redhat:enterprise_linux:9.0:*
|
|
|
|
|
2024-11-21 18:29
2024-04-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
83
|
6.5
-
|
MEDIUM
Network
|
The implementation of PEAP in wpa_supplicant through 2.10 allows authentication bypass. For a successful attack, wpa_supplicant must be configured to not verify the network's TLS certificate during P…
|
CWE-287
Improper Authentication
|
CVE-2023-52160
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:39
2024-02-23
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
84
|
7.5
-
|
HIGH
Network
|
Certain DNSSEC aspects of the DNS protocol (in RFC 4033, 4034, 4035, 6840, and related RFCs) allow remote attackers to cause a denial of service (CPU consumption) via one or more DNSSEC responses, ak…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2023-50387
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 17:36
2024-02-15
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
85
|
3.4
-
|
LOW
Physics
|
The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using pkcs15-init when a user or administrator enrols or modifies cards. …
|
-
|
CVE-2024-1454
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 17:50
2024-02-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
86
|
5.3
-
|
MEDIUM
Network
|
A vulnerability was found in JWCrypto. This flaw allows an attacker to cause a denial of service (DoS) attack and possible password brute-force and dictionary attacks to be more resource-intensive. T…
|
-
|
CVE-2023-6681
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:44
2024-02-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
87
|
-
-
|
-
|
A heap overflow flaw was found in 389-ds-base. This issue leads to a denial of service when writing a value larger than 256 chars in log_entry_attr.
|
-
|
CVE-2024-1062
|
cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:49
2024-02-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
88
|
5.5
-
|
MEDIUM
Local
|
A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push recursively calls into the code block. The OVS module does …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-1151
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:49
2024-02-12
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
89
|
7.8
-
|
HIGH
Local
|
An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to a…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-0229
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-23 12:15
2024-02-9
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
90
|
7.5
-
|
HIGH
Network
|
A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to …
|
-
|
CVE-2023-6536
|
cpe:2.3:o:redhat:enterprise_linux:9.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*
|
|
|
|
|
2024-11-21 17:44
2024-02-8
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|