CVEs from 2023
Total
6,100
critical
critical 240
high
high 1,530
medium
medium 1,393
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-2156 | high | — | 8.0 | 3y ago | A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to … | |||
| CVE-2023-2269 | high | — | 8.0 | 3y ago | A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub… | |||
| CVE-2023-53398 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mlx5: fix possible ptp queue fifo use-after-free Fifo indexes are not checked during pop operations and it leads to potential use… | |||
| CVE-2023-3141 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibl… | |||
| CVE-2023-53198 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: raw: Fix NULL deref in raw_get_next(). Dae R. Jeong reported a NULL deref in raw_get_next() [0]. It seems that the repro was run… | |||
| CVE-2023-3212 | high | — | 8.0 | 3y ago | A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure … | |||
| CVE-2023-53024 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation To mitigate Spectre v4, 2039f26f3aca ("bpf: Fix lea… | |||
| CVE-2023-53044 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: dm stats: check for and propagate alloc_percpu failure Check alloc_precpu()'s return value and return an error from dm_stats_init… | |||
| CVE-2023-53042 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Do not set DRR on pipe Commit [WHY] Writing to DRR registers such as OTG_V_TOTAL_MIN on the same frame as a pipe… | |||
| CVE-2023-53387 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix device management cmd timeout flow In the UFS error handling flow, the host will send a device management cm… | |||
| CVE-2023-53390 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drivers: base: dd: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called o… | |||
| CVE-2023-53039 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Fix potential use-after-free in work function When a reset notify IPC message is received, the ISR sched… | |||
| CVE-2023-53038 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpf… | |||
| CVE-2023-33203 | high | — | 8.0 | 3y ago | The Linux kernel before 6.2.9 has a race condition and resultant use-after-free in drivers/net/ethernet/qualcomm/emac/emac.c if a physically proximate attacker unplugs an emac based device. | |||
| CVE-2023-3268 | high | — | 8.0 | 3y ago | An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or le… | |||
| CVE-2023-3773 | high | — | 8.0 | 3y ago | A flaw was found in the Linux kernel’s IP framework for transforming packets (XFRM subsystem). This issue may allow a malicious user with CAP_NET_ADMIN privileges to cause a 4 byte out-of-bounds read… | |||
| CVE-2023-53036 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix call trace warning and hang when removing amdgpu device On GPUs with RAS enabled, below call trace and hang are o… | |||
| CVE-2023-53010 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: bnxt: Do not read past the end of test names Test names were being concatenated based on a offset beyond the end of the first nam… | |||
| CVE-2023-39331 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-53006 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uncleared server->smbd_conn in reconnect In smbd_destroy(), clear the server->smbd_conn pointer after freei… | |||
| CVE-2023-42833 | high | — | 8.0 | 3y ago | A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. | |||
| CVE-2023-53422 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fw_info file all the way, since we r… | |||
| CVE-2023-39191 | high | — | 8.0 | 3y ago | An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper validation of dynamic pointers within user-supplied eBPF programs prior… | |||
| CVE-2023-53087 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drm/i915/active: Fix misuse of non-idle barriers as fence trackers Users reported oopses on list corruptions when using i915 perf… | |||
| CVE-2023-52997 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() if (!type) continue; if (type > RTAX_MAX) return -EINVAL; … | |||
| CVE-2023-53430 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: dma: fix memory leak running mt76_dma_tx_cleanup Fix device unregister memory leak and alway cleanup all configured r… | |||
| CVE-2023-4155 | high | — | 8.0 | 3y ago | A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability … | |||
| CVE-2023-4206 | high | — | 8.0 | 3y ago | A use-after-free vulnerability in the Linux kernel's net/sched: cls_route component can be exploited to achieve local privilege escalation. When route4_change() is called on an existing filter, the … | |||
| CVE-2023-4208 | high | — | 8.0 | 3y ago | A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. When u32_change() is called on an existing filter, the whole… | |||
| CVE-2023-4273 | high | — | 8.0 | 3y ago | A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries f… | |||
| CVE-2023-52994 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: acpi: Fix suspend with Xen PV Commit f1e525009493 ("x86/boot: Skip realmode init code when running as Xen PV guest") missed one c… | |||
| CVE-2023-52993 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL Baoquan reported that after triggering a crash the subsequent crash-kernel f… | |||
| CVE-2023-53437 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Handle cameras with invalid descriptors If the source entity does not contain any pads, do not create a link. | |||
| CVE-2023-53443 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mfd: arizona: Use pm_runtime_resume_and_get() to prevent refcnt leak In arizona_clk32k_enable(), we should use pm_runtime_resume_… | |||
| CVE-2023-52734 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53477 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: Add lwtunnel encap size of all siblings in nexthop calculation In function rt6_nlmsg_size(), the length of nexthop is calcu… | |||
| CVE-2023-53479 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: cxl/acpi: Fix a use-after-free in cxl_parse_cfmws() KASAN and KFENCE detected an user-after-free in the CXL driver. This happens … | |||
| CVE-2023-53489 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp. syzkaller reported [0] memory leaks of an UDP socket and ZEROCOP… | |||
| CVE-2023-53499 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix error unwinding of XDP initialization When initializing XDP in virtnet_open(), some rq xdp initialization may hit… | |||
| CVE-2023-53333 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nf_conntrack_dccp_packet(… | |||
| CVE-2023-53532 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix deinitialization of firmware resources Currently, in ath11k_ahb_fw_resources_init(), iommu domain mapping is do… | |||
| CVE-2023-53319 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Handle kvm_arm_init failure correctly in finalize_pkvm Currently there is no synchronisation between finalize_pkvm() … | |||
| CVE-2023-53553 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: HID: hyperv: avoid struct memcpy overrun warning A previous patch addressed the fortified memcpy warning for most builds, but I s… | |||
| CVE-2023-53053 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: erspan: do not use skb_mac_header() in ndo_start_xmit() Drivers should not assume skb_mac_header(skb) == skb->data in their ndo_s… | |||
| CVE-2023-52977 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix flow memory leak in ovs_flow_cmd_new Syzkaller reports a memory leak of new_flow in ovs_flow_cmd_new() as i… | |||
| CVE-2023-38133 | high | — | 8.0 | 3y ago | The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web co… | |||
| CVE-2023-43115 | high | — | 8.0 | 3y ago | Important: ghostscript security update | |||
| CVE-2023-3972 | high | — | 8.0 | 3y ago | RHSA-2023:6283: insights-client security update (Important) | |||
| CVE-2023-5724 | high | — | 8.0 | 3y ago | Drivers are not always robust to extremely large draw calls and in some cases this scenario could have led to a crash. This vulnerability affects Firefox < 119, Firefox ESR < 115.4, and Thunderbird <… | |||
| CVE-2023-5725 | high | — | 8.0 | 3y ago | A malicious installed WebExtension could open arbitrary URLs, which under the right circumstance could be leveraged to collect sensitive user data. This vulnerability affects Firefox < 119, Firefox E… | |||
| CVE-2023-5728 | high | — | 8.0 | 3y ago | During garbage collection extra operations were performed on a object that should not be. This could have led to a potentially exploitable crash. This vulnerability affects Firefox < 119, Firefox ESR… | |||
| CVE-2023-5730 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 118, Firefox ESR 115.3, and Thunderbird 115.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… | |||
| CVE-2023-5732 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5721 | high | — | 8.0 | 3y ago | It was possible for certain browser prompts and dialogs to be activated or dismissed unintentionally by the user due to an insufficient activation-delay. This vulnerability affects Firefox < 119, Fir… | |||
| CVE-2023-0662 | high | — | 8.0 | 3y ago | RHSA-2023:5927: php:8.0 security update (Important) | |||
| CVE-2023-45143 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-38552 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-39333 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-39325 | high | — | 8.0 | 3y ago | Important: go-toolset and golang security and bug fix update | |||
| CVE-2023-5157 | high | — | 8.0 | 3y ago | RHSA-2023:5683: mariadb:10.5 security update (Important) | |||
| CVE-2023-3341 | high | — | 8.0 | 3y ago | Important: bind security update | |||
| CVE-2023-44488 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-40217 | high | — | 8.0 | 3y ago | An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primarily affects servers (such as HTTP servers) that use TLS client authenti… | |||
| CVE-2023-36664 | high | — | 8.0 | 3y ago | Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). | |||
| CVE-2023-5169 | high | — | 8.0 | 3y ago | A compromised content process could have provided malicious data in a `PathRecording` resulting in an out-of-bounds write, leading to a potentially exploitable crash in a privileged process. This vul… | |||
| CVE-2023-5176 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 117, Firefox ESR 115.2, and Thunderbird 115.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… | |||
| CVE-2023-5171 | high | — | 8.0 | 3y ago | During Ion compilation, a Garbage Collection could have resulted in a use-after-free condition, allowing an attacker to write two NUL bytes, and cause a potentially exploitable crash. This vulnerabil… | |||
| CVE-2023-3600 | high | — | 8.0 | 3y ago | During the worker lifecycle, a use-after-free condition could have occurred, which could have led to a potentially exploitable crash. This vulnerability affects Firefox < 115.0.2, Firefox ESR < 115.0… | |||
| CVE-2023-32559 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32002 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32006 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-41419 | high | — | 8.0 | 3y ago | RHSA-2024:8834: python-gevent security update (Important) | |||
| CVE-2023-20900 | high | — | 8.0 | 3y ago | RHSA-2023:5312: open-vm-tools security update (Important) | |||
| CVE-2023-38802 | high | — | 8.0 | 3y ago | FRRouting FRR 7.5.1 through 9.0 and Pica8 PICOS 4.3.3.2 allow a remote attacker to cause a denial of service via a crafted BGP update with a corrupted attribute 23 (Tunnel Encapsulation). | |||
| CVE-2023-3610 | high | — | 8.0 | 3y ago | A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-af… | |||
| CVE-2023-35001 | high | — | 8.0 | 3y ago | Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network namespace | |||
| CVE-2023-3390 | high | — | 8.0 | 3y ago | A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a danglin… | |||
| CVE-2023-1637 | high | — | 8.0 | 3y ago | A flaw that boot CPU could be vulnerable for the speculative execution behavior kind of attacks in the Linux kernel X86 CPU Power management options functionality was found in the way user resuming C… | |||
| CVE-2023-3354 | high | — | 8.0 | 3y ago | A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a certain threshold and if so, cleans up the … | |||
| CVE-2023-5129 | high | — | 8.0 | 3y ago | RHSA-2023:5309: libwebp security update (Important) | |||
| CVE-2023-53769 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: virt/coco/sev-guest: Double-buffer messages The encryption algorithms read and write directly to shared unencrypted memory, which… | |||
| CVE-2023-4004 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a loc… | |||
| CVE-2023-4147 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the sy… | |||
| CVE-2023-53383 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes … | |||
| CVE-2023-21102 | high | — | 8.0 | 3y ago | In __efi_rt_asm_wrapper of efi-rt-wrapper.S, there is a possible bypass of shadow stack protection due to a logic error in the code. This could lead to local escalation of privilege with no additiona… | |||
| CVE-2023-31248 | high | — | 8.0 | 3y ago | Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespa… | |||
| CVE-2023-53556 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: iavf: Fix use-after-free in free_netdev We do netif_napi_add() for all allocated q_vectors[], but potentially do netif_napi_del()… | |||
| CVE-2023-44466 | high | — | 8.0 | 3y ago | An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error, leading to a buffer overflow and remote code execution via HELLO or one of t… | |||
| CVE-2023-3776 | high | — | 8.0 | 3y ago | A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately … | |||
| CVE-2023-23908 | high | — | 8.0 | 3y ago | RHEA-2023:4995: microcode_ctl bug fix and enhancement update (Important) | |||
| CVE-2023-4585 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 116, Firefox ESR 115.1, and Thunderbird 115.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… | |||
| CVE-2023-4580 | high | — | 8.0 | 3y ago | Push notifications stored on disk in private browsing mode were not being encrypted potentially allowing the leak of sensitive information. This vulnerability affects Firefox < 117, Firefox ESR < 115… | |||
| CVE-2023-4584 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 116, Firefox ESR 102.14, Firefox ESR 115.1, Thunderbird 102.14, and Thunderbird 115.1. Some of these bugs showed evidence of memory corruption and we presume tha… | |||
| CVE-2023-4583 | high | — | 8.0 | 3y ago | When checking if the Browsing Context had been discarded in `HttpBaseChannel`, if the load group was not available then it was assumed to have already been discarded which was not always the case for… | |||
| CVE-2023-4051 | high | — | 8.0 | 3y ago | A website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116… | |||
| CVE-2023-4578 | high | — | 8.0 | 3y ago | When calling `JS::CheckRegExpSyntax` a Syntax Error could have been set which would end in calling `convertToRuntimeErrorAndClear`. A path in the function could attempt to allocate memory when none i… | |||
| CVE-2023-4574 | high | — | 8.0 | 3y ago | When creating a callback over IPC for showing the Color Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of t… | |||
| CVE-2023-4581 | high | — | 8.0 | 3y ago | Excel `.xll` add-in files did not have a blocklist entry in Firefox's executable blocklist which allowed them to be downloaded without any warning of their potential harm. This vulnerability affects … | |||
| CVE-2023-4575 | high | — | 8.0 | 3y ago | When creating a callback over IPC for showing the File Picker window, multiple of the same callbacks could have been created at a time and eventually all simultaneously destroyed as soon as one of th… | |||
| CVE-2023-4577 | high | — | 8.0 | 3y ago | When `UpdateRegExpStatics` attempted to access `initialStringHeap` it could already have been garbage collected prior to entering the function, which could potentially have led to an exploitable cras… |