1791
|
5.5 |
MEDIUM
Local
|
linux fedoraproject redhat
|
linux_kernel fedora enterprise_linux
|
A null pointer dereference vulnerability was found in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c in the Digital Phase Locked Loop (DPLL) subsystem in the Linux kernel. This issue could…
|
CWE-476
NULL Pointer Dereference
|
CVE-2023-6679
|
2024-09-17 01:15 |
2023-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1792
|
7.5 |
HIGH
Network
squid-cache redhat
|
squid enterprise_linux
|
Squid is vulnerable to Denial of Service attack against HTTP and HTTPS clients due to an Improper Handling of Structural Elements bug.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2023-5824
|
2024-09-17 01:15 |
2023-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1793
|
7.5 |
HIGH
Network
squid-cache redhat
|
squid enterprise_linux enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_server_tus
|
Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or constructing ftp:// URLs from FTP Native input.
|
CWE-681
Incorrect Conversion between Numeric Types
|
CVE-2023-46848
|
2024-09-17 01:15 |
2023-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1794
|
7.5 |
HIGH
Network
squid-cache redhat
|
squid enterprise_linux_workstation enterprise_linux_server enterprise_linux enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_powe…
|
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP …
|
CWE-120
Classic Buffer Overflow
|
CVE-2023-46847
|
2024-09-17 01:15 |
2023-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1795
|
5.3 |
MEDIUM
Network
squid-cache redhat
|
squid enterprise_linux enterprise_linux_server_tus enterprise_linux_server_aus enterprise_linux_eus enterprise_linux_for_power_little_endian enterprise_linux_for_ibm_z_systems en…
|
SQUID is vulnerable to HTTP request smuggling, caused by chunked decoder lenience, allows a remote attacker to perform Request/Response smuggling past firewall and frontend security systems.
|
CWE-444
HTTP Request Smuggling
|
CVE-2023-46846
|
2024-09-17 01:15 |
2023-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1796
|
4.7 |
MEDIUM
Local
|
x.org redhat fedoraproject debian
|
xwayland x_server enterprise_linux fedora debian_linux
|
A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zap…
|
CWE-416
Use After Free
|
CVE-2023-5380
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1797
|
4.6 |
MEDIUM
Physics
|
gnu redhat
|
grub2 enterprise_linux
|
An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present attacker to present a specially crafted NTFS file system image to read arbitrary memo…
|
CWE-125
Out-of-bounds Read
|
CVE-2023-4693
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1798
|
7.8 |
HIGH
Local
|
gnu redhat
|
grub2 enterprise_linux
|
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corrupt…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-4692
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1799
|
7.8 |
HIGH
Local
|
x.org redhat fedoraproject debian
|
xwayland x_server enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_for_scientific_computing enterprise_linux enterprise_linux_server enterprise_linux_for_po…
|
A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty fu…
|
CWE-787
Out-of-bounds Write
|
CVE-2023-5367
|
2024-09-17 01:15 |
2023-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1800
|
4.3 |
MEDIUM
Network
|
postgresql redhat debian
|
postgresql enterprise_linux debian_linux
|
A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forb…
|
NVD-CWE-noinfo
|
CVE-2023-39418
|
2024-09-17 01:15 |
2023-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|