|
1731
|
7.8 |
HIGH
Local
|
redhat
fedoraproject
|
ansible
extra_packages_for_enterprise_linux
fedora
ansible_automation_platform
ansible_developer
ansible_inside
|
A template injection flaw was found in Ansible where a user's controller internal templating operations may remove the unsafe designation from template data. This issue could allow an attacker to use…
|
NVD-CWE-Other
|
CVE-2023-5764
|
2024-09-17 02:16 |
2023-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1732
|
3.8 |
LOW
Physics
|
opensc_project
redhat
fedoraproject
|
opensc
enterprise_linux
fedora
|
An out-of-bounds read vulnerability was found in OpenSC packages within the MyEID driver when handling symmetric key encryption. Exploiting this flaw requires an attacker to have physical access to t…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-4535
|
2024-09-17 02:16 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1733
|
7.0 |
HIGH
Local
|
x.org
redhat
|
x_server
enterprise_linux
|
A use-after-free flaw was found in xorg-x11-server-Xvfb. This issue occurs in Xvfb with a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Za…
|
CWE-416
Use After Free
|
CVE-2023-5574
|
2024-09-17 02:16 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1734
|
- |
|
-
|
-
|
Untrusted pointer dereference in UEFI firmware for some Intel(R) reference processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-822
Untrusted Pointer Dereference
|
CVE-2023-42772
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1735
|
- |
|
-
|
-
|
A race condition in UEFI firmware for some Intel(R) processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-362
Race Condition
|
CVE-2023-41833
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1736
|
- |
|
-
|
-
|
Out-of-bounds read in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access.
|
CWE-125
Out-of-bounds Read
|
CVE-2023-25546
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1737
|
- |
|
-
|
-
|
NULL pointer dereference in the UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-395
Use of NullPointerException Catch to Detect NULL Pointer Dereference
|
CVE-2023-23904
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1738
|
- |
|
-
|
-
|
Out-of-bounds write in UEFI firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access.
|
CWE-787
Out-of-bounds Write
|
CVE-2023-22351
|
2024-09-17 02:15 |
2024-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1739
|
6.4 |
MEDIUM
Physics
|
opensc_project
redhat
|
opensc
enterprise_linux
|
Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollment process using pkcs15-init when a user or administrator enrolls cards. To take advantage …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2023-40661
|
2024-09-17 02:15 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1740
|
6.6 |
MEDIUM
Physics
|
opensc_project
redhat
|
opensc
enterprise_linux
|
A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operations in other processes when an empty zero…
|
CWE-287
Improper Authentication
|
CVE-2023-40660
|
2024-09-17 02:15 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
