CVEs from 2023
Total
6,100
critical
critical 240
high
high 1,530
medium
medium 1,393
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-53202 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: PM: domains: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it, … | |||
| CVE-2023-53275 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync() The variable codec->regmap is often… | |||
| CVE-2023-53545 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: unmap and remove csa_va properly Root PD BO should be reserved before unmap and remove a bo_va from VM otherwise lock… | |||
| CVE-2023-53550 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fix global sysfs attribute type In commit 3666062b87ec ("cpufreq: amd-pstate: move to use bus_get_dev_root()… | |||
| CVE-2023-7008 | medium | — | 5.5 | 2y ago | A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the u… | |||
| CVE-2023-6228 | medium | — | 5.5 | 2y ago | RHSA-2024:5079: libtiff security update (Moderate) | |||
| CVE-2023-53999 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: TC, Fix internal port memory leak The flow rule can be splited, and the extra post_act rules are added to post_act tab… | |||
| CVE-2023-53151 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: md/raid10: prevent soft lockup while flush writes Currently, there is no limit for raid1/raid10 plugged bio. While flushing write… | |||
| CVE-2023-6917 | medium | — | 5.5 | 2y ago | A vulnerability has been identified in the Performance Co-Pilot (PCP) package, stemming from the mixed privilege levels utilized by systemd services associated with PCP. While certain services operat… | |||
| CVE-2023-39354 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-53280 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Remove unused nvme_ls_waitq wait queue System crash when qla2x00_start_sp(sp) returns error code EGAIN and wake_up… | |||
| CVE-2023-53821 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip6_vti: fix slab-use-after-free in decode_session6 When ipv6_vti device is set to the qdisc of the sfb type, the cb field of the… | |||
| CVE-2023-53611 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ipmi_si: fix a memleak in try_smi_init() Kmemleak reported the following leak info in try_smi_init(): unreferenced object 0xffff… | |||
| CVE-2023-29406 | medium | — | 5.5 | 2y ago | RHSA-2023:7202: container-tools:4.0 security and bug fix update (Moderate) | |||
| CVE-2023-40186 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-38473 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-53762 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync Use-after-free can occur in hci_disconnect_all_sync if a connection is de… | |||
| CVE-2023-4692 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |||
| CVE-2023-53134 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Avoid order-5 memory allocation for TPA data The driver needs to keep track of all the possible concurrent TPA (GRO/LRO)… | |||
| CVE-2023-53615 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix deletion race condition System crash when using debug kernel due to link list corruption. The cause of the lin… | |||
| CVE-2023-53621 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: memcontrol: ensure memcg acquired by id is properly set up In the eviction recency check, we attempt to retrieve the memcg to whi… | |||
| CVE-2023-53761 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a use… | |||
| CVE-2023-54064 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ipmi:ssif: Fix a memory leak when scanning for an adapter The adapter scan ssif_info_find() sets info->adapter_name if the adapte… | |||
| CVE-2023-54070 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: igb: clean up in all error paths when enabling SR-IOV After commit 50f303496d92 ("igb: Enable SR-IOV after reinit"), removing the… | |||
| CVE-2023-54072 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential data race at PCM memory allocation helpers The PCM memory allocation helpers have a sanity check against… | |||
| CVE-2023-53371 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create The memory pointed to by the fs->any pointer is not freed in the er… | |||
| CVE-2023-40475 | medium | — | 5.5 | 2y ago | RHSA-2024:3060: gstreamer1-plugins-bad-free security update (Moderate) | |||
| CVE-2023-4693 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |||
| CVE-2023-43622 | medium | — | 5.5 | 2y ago | An attacker, opening a HTTP/2 connection with an initial window size of 0, was able to block handling of that connection indefinitely in Apache HTTP Server. This could be used to exhaust worker resou… | |||
| CVE-2023-45802 | medium | — | 5.5 | 2y ago | When a HTTP/2 stream was reset (RST frame) by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection c… | |||
| CVE-2023-53577 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf, cpumap: Make sure kthread is running before map update returns The following warning was reported when running stress-mode e… | |||
| CVE-2023-53150 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Pointer may be dereferenced Klocwork tool reported pointer 'rport' returned from call to function fc_bsg_to_rport(… | |||
| CVE-2023-37327 | medium | — | 5.5 | 2y ago | GStreamer FLAC File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interact… | |||
| CVE-2023-53343 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: icmp6: Fix null-ptr-deref of ip6_null_entry->rt6i_idev in icmp6_dev(). With some IPv6 Ext Hdr (RPL, SRv6, etc.), we can send a pa… | |||
| CVE-2023-53380 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request There are two check of 'mreplace' in raid10_sync_request(). In t… | |||
| CVE-2023-49083 | medium | — | 5.5 | 2y ago | RHSA-2025:14553: python-cryptography security update (Moderate) | |||
| CVE-2023-53476 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry() This condition needs to match the previous "if (epcp->sta… | |||
| CVE-2023-53559 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip_vti: fix potential slab-use-after-free in decode_session6 When ip_vti device is set to the qdisc of the sfb type, the cb field… | |||
| CVE-2023-45287 | medium | — | 5.5 | 2y ago | Moderate: container-tools:rhel8 security update | |||
| CVE-2023-53140 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: core: Remove the /proc/scsi/${proc_name} directory earlier Remove the /proc/scsi/${proc_name} directory earlier to fix a ra… | |||
| CVE-2023-53525 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Allow UD qp_type to join multicast only As for multicast: - The SIDR is the only mode that makes sense; - Besides PS_UD… | |||
| CVE-2023-53530 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id() The following call trace was observed: localhost kernel:… | |||
| CVE-2023-53539 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix incomplete state save in rxe_requester If a send packet is dropped by the IP layer in rxe_requester() the call to r… | |||
| CVE-2023-5871 | medium | — | 5.5 | 2y ago | Moderate: libnbd security update | |||
| CVE-2023-39350 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-39351 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-39352 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-39356 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-40181 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-40188 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-40567 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-40569 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-43788 | medium | — | 5.5 | 2y ago | RHSA-2024:3022: motif security update (Moderate) | |||
| CVE-2023-51714 | medium | — | 5.5 | 2y ago | An issue was discovered in the HTTP2 implementation in Qt before 5.15.17, 6.x before 6.2.11, 6.3.x through 6.5.x before 6.5.4, and 6.6.x before 6.6.2. network/access/http2/hpacktable.cpp has an incor… | |||
| CVE-2023-54090 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ixgbe: Fix panic during XDP_TX with > 64 CPUs Commit 4fe815850bdc ("ixgbe: let the xdpdrv work with more than 64 cpus") adds supp… | |||
| CVE-2023-41358 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c processes NLRIs if the attribute length is zero. | |||
| CVE-2023-54166 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: igc: Fix Kernel Panic during ndo_tx_timeout callback The Xeon validation group has been carrying out some loaded tests with vario… | |||
| CVE-2023-54169 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix memory leak in mlx5e_ptp_open When kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory pointed by "c" o… | |||
| CVE-2023-5380 | medium | — | 5.5 | 2y ago | A use-after-free flaw was found in the xorg-x11-server. An X server crash may occur in a very specific and legacy configuration (a multi-screen setup with multiple protocol screens, also known as Zap… | |||
| CVE-2023-31122 | medium | — | 5.5 | 2y ago | Out-of-bounds Read vulnerability in mod_macro of Apache HTTP Server.This issue affects Apache HTTP Server: through 2.4.57. | |||
| CVE-2023-31490 | medium | — | 5.5 | 2y ago | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_attr_psid_sub() function. | |||
| CVE-2023-31489 | medium | — | 5.5 | 2y ago | An issue found in Frrouting bgpd v.8.4.2 allows a remote attacker to cause a denial of service via the bgp_capability_llgr() function. | |||
| CVE-2023-38470 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-54179 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Array index may go out of bound Klocwork reports array 'vha->host_str' of size 16 may use index value(s) 16..19. … | |||
| CVE-2023-54289 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Fix NULL dereference in error handling Smatch reported: drivers/scsi/qedf/qedf_main.c:3056 qedf_alloc_global_queues(… | |||
| CVE-2023-54184 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsit: Free cmds before session free Commands from recovery entries are freed after session has been closed. That … | |||
| CVE-2023-47038 | medium | — | 5.5 | 2y ago | A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap… | |||
| CVE-2023-53148 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: igb: Fix igb_down hung on surprise removal In a setup where a Thunderbolt hub connects to Ethernet and a display through USB Type… | |||
| CVE-2023-46316 | medium | — | 5.5 | 2y ago | RHSA-2024:3211: traceroute security update (Moderate) | |||
| CVE-2023-42467 | medium | — | 5.5 | 2y ago | QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU … | |||
| CVE-2023-40589 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-37328 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-base security update | |||
| CVE-2023-53354 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: skbuff: skb_segment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 ("skbuff: in skb_segment, call zeroco… | |||
| CVE-2023-53365 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ip6mr: Fix skb_under_panic in ip6mr_cache_report() skbuff: skb_under_panic: text:ffffffff88771f69 len:56 put:-4 head:ffff88805f8… | |||
| CVE-2023-53421 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats() When blkg_alloc() is called to allocate a blkcg_gq struc… | |||
| CVE-2023-53441 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpu_map_update_elem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced o… | |||
| CVE-2023-41360 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0. bgpd/bgp_packet.c can read the initial byte of the ORF header in an ahead-of-stream situation. | |||
| CVE-2023-53995 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix one memleak in __inet_del_ifa() I got the below warning when do fuzzing test: unregister_netdevice: waiting for bo… | |||
| CVE-2023-50186 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |||
| CVE-2023-40476 | medium | — | 5.5 | 2y ago | RHSA-2024:3060: gstreamer1-plugins-bad-free security update (Moderate) | |||
| CVE-2023-3618 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |||
| CVE-2023-40745 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |||
| CVE-2023-41175 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |||
| CVE-2023-53442 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ice: Block switchdev mode when ADQ is active and vice versa ADQ and switchdev are not supported simultaneously. Enabling both at … | |||
| CVE-2023-4874 | medium | — | 5.5 | 2y ago | RHSA-2024:3058: mutt security update (Moderate) | |||
| CVE-2023-53496 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bid… | |||
| CVE-2023-3255 | medium | — | 5.5 | 2y ago | A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the … | |||
| CVE-2023-39353 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |||
| CVE-2023-53501 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on pasid unbind When unbinding pasid - a race condition exists vs … | |||
| CVE-2023-53513 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbd_ioctl arg without verification. The UBSAN … | |||
| CVE-2023-1579 | medium | — | 5.5 | 2y ago | Moderate: mingw components security update | |||
| CVE-2023-54148 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Move representor neigh cleanup to profile cleanup_tx For IP tunnel encapsulation in ECMP (Equal-Cost Multipath) mode, … | |||
| CVE-2023-40474 | medium | — | 5.5 | 2y ago | RHSA-2024:3060: gstreamer1-plugins-bad-free security update (Moderate) | |||
| CVE-2023-54186 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: fix pin_assignment_show This patch fixes negative indexing of buf array in pin_assignment_show … | |||
| CVE-2023-54003 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix GID entry ref leak when create_ah fails If AH create request fails, release sgid_attr to avoid GID entry referrenc… | |||
| CVE-2023-5088 | medium | — | 5.5 | 2y ago | A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead (potentially overwriting the VM's boot code). This could be used, fo… | |||
| CVE-2023-53210 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid() r5l_flush_stripe_to_raid() will check if the list 'flushing_ios… | |||
| CVE-2023-6683 | medium | — | 5.5 | 2y ago | A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. The qemu_clipboard_request() function can be reached before vnc_server_cut_text_caps() was called and had the… | |||
| CVE-2023-45897 | medium | — | 5.5 | 2y ago | exfatprogs before 1.2.2 allows out-of-bounds memory access, such as in read_file_dentry_set. | |||
| CVE-2023-43785 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update |