CVEs from 2023
Total
6,120
critical
critical 239
high
high 1,500
medium
medium 1,412
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-52951 | medium | 5.9 | 5.9 | 1d ago | A cleartext transmission of sensitive information vulnerability in Synology Note Station Client before 2.2.4-703 allows man-in-the-middle attackers to obtain user credential. | |||
| CVE-2023-26001 | medium | 5.9 | 5.9 | 1y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Marchetti Design Next Event Calendar allows Stored XSS. This issue affects Next Event Calendar: f… | |||
| CVE-2023-26000 | medium | 5.9 | 5.9 | 1y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hanhdo205 Bang tinh vay allows Stored XSS. This issue affects Bang tinh vay: from n/a through 1.0… | |||
| CVE-2023-6237 | medium | 5.9 | 5.9 | 2y ago | Low: openssl and openssl-fips-provider security update | |||
| CVE-2023-4806 | medium | 5.9 | 5.9 | 2y ago | RHSA-2023:5455: glibc security update (Important) | |||
| CVE-2023-25965 | medium | 5.9 | 5.9 | 2y ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in mbbhatti Upload Resume.This issue affects Upload Resume: from n/a through 1.2.0. | |||
| CVE-2023-48795 | medium | 5.9 | 5.9 | 3y ago | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from… | |||
| CVE-2023-40403 | medium | — | 5.5 | 2mo ago | RHSA-2025:8676: libxslt security update (Moderate) | |||
| CVE-2023-53034 | medium | — | 5.5 | 4mo ago | In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans There is a kernel API ntb_mw_clear_trans() would pass 0 t… | |||
| CVE-2023-52971 | medium | — | 5.5 | 5mo ago | RHSA-2026:6435: mariadb:10.11 security update (Moderate) | |||
| CVE-2023-52355 | medium | — | 5.5 | 7mo ago | An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of servic… | |||
| CVE-2023-54237 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: net/smc: fix potential panic dues to unprotected smc_llc_srv_add_link() There is a certain chance to trigger the following panic:… | |||
| CVE-2023-52941 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions:… | |||
| CVE-2023-54152 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock by moving j1939_sk_errqueue() This commit addresses a deadlock situation that can occur in certain s… | |||
| CVE-2023-53426 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: xsk: Fix xsk_diag use-after-free error during socket cleanup Fix a use-after-free error that is possible if the xsk_diag interfac… | |||
| CVE-2023-53781 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcp_write_timer_handler(). With Eric's ref tracker, syzbot finally found a repro for use-after-free in… | |||
| CVE-2023-54119 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotify_freeing_mark() races with inotify_handle_inode_event() it can happen … | |||
| CVE-2023-54318 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add While doing smcr_port_add, there maybe linkg… | |||
| CVE-2023-52970 | medium | — | 5.5 | 7mo ago | RHSA-2026:6435: mariadb:10.11 security update (Moderate) | |||
| CVE-2023-52969 | medium | — | 5.5 | 7mo ago | RHSA-2026:6435: mariadb:10.11 security update (Moderate) | |||
| CVE-2023-53226 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiex_process_mgmt_packet, mwifiex_process_sta_rx_packet… | |||
| CVE-2023-53494 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all o… | |||
| CVE-2023-53257 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check S1G action frame size Before checking the action code, check that it even exists in the frame. | |||
| CVE-2023-53331 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a ("pstore/ram: Do not treat empty buffers as valid"), … | |||
| CVE-2023-53386 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix potential use-after-free when clear keys Similar to commit c5d2b6fa26b5 ("Bluetooth: Fix use-after-free in hci_rem… | |||
| CVE-2023-53373 | medium | — | 5.5 | 8mo ago | In the Linux kernel, the following vulnerability has been resolved: crypto: seqiv - Handle EBUSY correctly As it is seqiv only handles the special return value of EINPROGERSS, which means that in a… | |||
| CVE-2023-53305 | medium | — | 5.5 | 8mo ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free Fix potential use-after-free in l2cap_le_command_rej. | |||
| CVE-2023-52933 | medium | — | 5.5 | 11mo ago | In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix handling and sanity checking of xattr_ids count A Sysbot [1] corrupted filesystem exposes two flaws in the handling… | |||
| CVE-2023-24824 | medium | — | 5.5 | 1y ago | RHSA-2025:8427: pandoc security update (Moderate) | |||
| CVE-2023-53117 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: fs: prevent out-of-bounds array speculation when closing a file descriptor Google-Bug-Id: 114199369 | |||
| CVE-2023-54089 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: add the missing REQ_OP_WRITE for flush bio When doing mkfs.xfs on a pmem device, the following warning was -------… | |||
| CVE-2023-53260 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer dereference in ovl_permission() Following process: P1 P2 path_lookupat lin… | |||
| CVE-2023-53261 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpi_buffer->pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff002… | |||
| CVE-2023-53595 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: mcs: Fix NULL pointer dereferences When system is rebooted after creating macsec interface below NULL pointer deref… | |||
| CVE-2023-52917 | medium | — | 5.5 | 1y ago | RHSA-2025:6966: kernel security update (Moderate) | |||
| CVE-2023-46751 | medium | — | 5.5 | 1y ago | RHSA-2025:4362: ghostscript security update (Moderate) | |||
| CVE-2023-53989 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both create_mapping_noalloc() and update_mapping_prot() sanity-check their 'virt' parameter,… | |||
| CVE-2023-54230 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: amba: bus: fix refcount leak commit 5de1540b7bc4 ("drivers/amba: create devices from device tree") increases the refcount of of_n… | |||
| CVE-2023-53519 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock … | |||
| CVE-2023-54278 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/vmem: split pages when debug pagealloc is enabled Since commit bb1520d581a3 ("s390/mm: start kernel with DAT enabled") the k… | |||
| CVE-2023-54313 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer dereference in ovl_get_acl_rcu() Following process: P1 P2 path_openat link_… | |||
| CVE-2023-54322 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: set __exception_irq_entry with __irq_entry as a default filter_irq_stacks() is supposed to cut entries which are related i… | |||
| CVE-2023-53510 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp->cmd ufshcd_queuecommand() may be called two times in a row for a SCSI command before it is… | |||
| CVE-2023-54117 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/dcssblk: fix kernel crash with list_add corruption Commit fb08a1908cb1 ("dax: simplify the dax_device <-> gendisk associatio… | |||
| CVE-2023-52672 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: pipe: wakeup wr_wait after setting max_usage Commit c73be61cede5 ("pipe: Add general notification queue support") a regression wa… | |||
| CVE-2023-53287 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: Put the cdns set active part outside the spin lock The device may be scheduled during the resume process, so this can… | |||
| CVE-2023-53196 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix potential memory leak Function dwc3_qcom_probe() allocates memory for resource structure which is pointed by… | |||
| CVE-2023-53859 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/idle: mark arch_cpu_idle() noinstr linux-next commit ("cpuidle: tracing: Warn about !rcu_is_watching()") adds a new warning … | |||
| CVE-2023-53555 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: initialize damo_filter->list from damos_new_filter() damos_new_filter() is not initializing the list field of newl… | |||
| CVE-2023-53568 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if dev_set_name() fails When dev_set_name() fails, zcdn_create() doesn't free the newly allocated … | |||
| CVE-2023-53654 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Add validation before accessing cgx and lmac with the addition of new MAC blocks like CN10K RPM and CN10KB RPM_USX,… | |||
| CVE-2023-53066 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info We have to make sure that the info returned by the helper is va… | |||
| CVE-2023-6693 | medium | — | 5.5 | 1y ago | A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flush_tx function if guest features VIRTIO_NET_F_HASH_REPORT, VIRTIO_F_V… | |||
| CVE-2023-53133 | medium | 5.5 | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix an infinite loop error when len is 0 in tcp_bpf_recvmsg_parser() When the buffer length of the recvmsg system c… | |||
| CVE-2023-52490 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: mm: migrate: fix getting incorrect page mapping during page migration When running stress-ng testing, we found below kernel crash… | |||
| CVE-2023-41053 | medium | — | 5.5 | 2y ago | Moderate: redis:7 security update | |||
| CVE-2023-53230 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning in cifs_smb3_do_mount() This fixes the following warning reported by kernel test robot fs/smb/client/… | |||
| CVE-2023-54083 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and… | |||
| CVE-2023-52757 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All release_mid() callers seem to hold a reference of @mid so there is no… | |||
| CVE-2023-6681 | medium | — | 5.5 | 2y ago | RHSA-2024:3267: idm:DL1 and idm:client security update (Moderate) | |||
| CVE-2023-54019 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroup_file_release causes UAF issues w… | |||
| CVE-2023-52649 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Avoid reading beyond LUT array When the floor LUT index (drm_fixp2int(lut_index) is the last index of the array the cei… | |||
| CVE-2023-54118 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: setup GPIO controller later in probe The GPIO controller component of the sc16is7xx driver is setup too early,… | |||
| CVE-2023-52932 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm/swapfile: add cond_resched() in get_swap_pages() The softlockup still occurs in get_swap_pages() under memory pressure. 64 CP… | |||
| CVE-2023-52637 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: can: j1939: Fix UAF in j1939_sk_match_filter during setsockopt(SO_J1939_FILTER) Lock jsk->sk to prevent UAF when setsockopt(..., … | |||
| CVE-2023-45866 | medium | — | 5.5 | 2y ago | RHSA-2024:11154: bluez security update (Moderate) | |||
| CVE-2023-54271 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init blk-iocost sometimes causes the following crash… | |||
| CVE-2023-52445 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix use after free on context disconnection Upon module load, a kthread is created targeting the pvr2_context_thr… | |||
| CVE-2023-53704 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_iomap() and kzalloc() with devm_of_iomap() and d… | |||
| CVE-2023-52749 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: spi: Fix null dereference on suspend A race condition exists where a synchronous (noqueue) transfer can be active during a system… | |||
| CVE-2023-52565 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix OOB read If the index provided by the user is bigger than the mask size, we might do an out of bound read. | |||
| CVE-2023-53178 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, w… | |||
| CVE-2023-52663 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe() Driver uses kasprintf() to initialize fw_{code,data}_bin members of struct… | |||
| CVE-2023-52455 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iommu: Don't reserve 0-length IOVA region When the bootloader/firmware doesn't setup the framebuffers, their address and size are… | |||
| CVE-2023-52635 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop resu… | |||
| CVE-2023-52935 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: fix ->anon_vma race If an ->anon_vma is attached to the VMA, collapse_and_free_pmd() requires it to be locked. Pa… | |||
| CVE-2023-51580 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-52659 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type On 64-bit platforms, the pfn_to_kaddr() macro requires that th… | |||
| CVE-2023-54267 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT lppaca_shared_proc() takes a pointer to the lppaca which is t… | |||
| CVE-2023-54165 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: zsmalloc: move LRU update from zs_map_object() to zs_malloc() Under memory pressure, we sometimes observe the following crash: [… | |||
| CVE-2023-52656 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: io_uring: drop any code related to SCM_RIGHTS This is dead code after we dropped support for passing io_uring fds over SCM_RIGHTS… | |||
| CVE-2023-52819 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For pptable structs that use flexible array sizes, use flexibl… | |||
| CVE-2023-53220 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: az6007: Fix null-ptr-deref in az6007_i2c_xfer() In az6007_i2c_xfer, msg is controlled by user. When msg[i].buf is null and… | |||
| CVE-2023-50967 | medium | — | 5.5 | 2y ago | RHSA-2024:5294: jose security update (Moderate) | |||
| CVE-2023-51764 | medium | — | 5.5 | 2y ago | Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in re… | |||
| CVE-2023-51594 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-53505 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise i… | |||
| CVE-2023-52859 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: perf: hisi: Fix use-after-free when register pmu fails When we fail to register the uncore pmu, the pmu context may not been allo… | |||
| CVE-2023-52643 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iio: core: fix memleak in iio_device_register_sysfs When iio_device_register_sysfs_group() fails, we should free iio_dev_opaque->… | |||
| CVE-2023-7250 | medium | — | 5.5 | 2y ago | RHSA-2024:4241: iperf3 security update (Moderate) | |||
| CVE-2023-54268 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: debugobjects: Don't wake up kswapd from fill_pool() syzbot is reporting a lockdep warning in fill_pool() because the allocation f… | |||
| CVE-2023-51589 | medium | — | 5.5 | 2y ago | RHSA-2025:4043: bluez security update (Moderate) | |||
| CVE-2023-52466 | medium | — | 5.5 | 2y ago | RHSA-2024:9315: kernel security update (Moderate) | |||
| CVE-2023-52661 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() If clk_get_sys(..., "pll_d2_out0") fail… | |||
| CVE-2023-51596 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-52650 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Add missing check for of_find_device_by_node Add check for the return value of of_find_device_by_node() and retur… | |||
| CVE-2023-52664 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: atlantic: eliminate double free in error handling logic Driver has a logic leak in ring data allocation/free, where aq_ring_… | |||
| CVE-2023-54095 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/iommu: Fix notifiers being shared by PCI and VIO buses fail_iommu_setup() registers the fail_iommu_bus_notifier struct to… | |||
| CVE-2023-53747 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: vc_screen: reload load of struct vc_data pointer in vcs_write() to avoid UAF After a call to console_unlock() in vcs_write() the … | |||
| CVE-2023-52837 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_open Commit 4af5f2e03013 ("nbd: use blk_mq_alloc_disk and blk_cleanup_disk") cleans up disk by blk_cleanup_di… |