CVEs from 2023
Total
6,107
critical
critical 240
high
high 1,530
medium
medium 1,393
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-21982 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-22103 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-40225 | medium | — | 5.5 | 2y ago | Moderate: haproxy security update | |||
| CVE-2023-45539 | medium | — | 5.5 | 2y ago | RHSA-2024:8849: haproxy security update (Moderate) | |||
| CVE-2023-22057 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-21980 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-21947 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-21940 | medium | — | 5.5 | 2y ago | RHSA-2024:0894: mysql:8.0 security update (Moderate) | |||
| CVE-2023-5992 | medium | — | 5.5 | 2y ago | RHSA-2024:0967: opensc security update (Moderate) | |||
| CVE-2023-5676 | medium | — | 5.5 | 2y ago | RHSA-2024:0866: java-1.8.0-ibm security update (Moderate) | |||
| CVE-2023-28487 | medium | — | 5.5 | 2y ago | Sudo before 1.9.13 does not escape control characters in sudoreplay output. | |||
| CVE-2023-42465 | medium | — | 5.5 | 2y ago | Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling … | |||
| CVE-2023-28486 | medium | — | 5.5 | 2y ago | Sudo before 1.9.13 does not escape control characters in log messages. | |||
| CVE-2023-6135 | medium | — | 5.5 | 2y ago | Multiple NSS NIST curves were susceptible to a side-channel attack known as "Minerva". This attack could potentially allow an attacker to recover the private key. This vulnerability affects Firefox <… | |||
| CVE-2023-5981 | medium | — | 5.5 | 2y ago | RHSA-2024:0627: gnutls security update (Moderate) | |||
| CVE-2023-7104 | medium | — | 5.5 | 2y ago | RHSA-2024:0253: sqlite security update (Moderate) | |||
| CVE-2023-38409 | medium | — | 5.5 | 2y ago | An issue was discovered in set_con2fb_map in drivers/video/fbdev/core/fbcon.c in the Linux kernel before 6.2.12. Because an assignment occurs only for the first vc, the fbcon_registered_fb and fbcon_… | |||
| CVE-2023-45803 | medium | — | 5.5 | 2y ago | Moderate: container-tools:rhel8 security update | |||
| CVE-2023-41080 | medium | — | 5.5 | 2y ago | Apache Tomcat Open Redirect vulnerability | |||
| CVE-2023-45648 | medium | — | 5.5 | 2y ago | Improper Input Validation vulnerability in Apache Tomcat.Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0.81 and from 8.5.0 through 8.5.93 did not c… | |||
| CVE-2023-42794 | medium | — | 5.5 | 2y ago | Incomplete Cleanup vulnerability in Apache Tomcat. The internal fork of Commons FileUpload packaged with Apache Tomcat 9.0.70 through 9.0.80 and 8.5.85 through 8.5.93 included an unreleased, in pro… | |||
| CVE-2023-47235 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when a malformed BGP UPDATE message with an EOR is processed, because the presence of EOR does not lead to a treat-as-withdra… | |||
| CVE-2023-4001 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |||
| CVE-2023-38406 | medium | — | 5.5 | 2y ago | bgpd/bgp_flowspec.c in FRRouting (FRR) before 8.4.3 mishandles an nlri length of zero, aka a "flowspec overflow." | |||
| CVE-2023-38407 | medium | — | 5.5 | 2y ago | bgpd/bgp_label.c in FRRouting (FRR) before 8.5 attempts to read beyond the end of the stream during labeled unicast parsing. | |||
| CVE-2023-42795 | medium | — | 5.5 | 2y ago | Incomplete Cleanup vulnerability in Apache Tomcat.When recycling various internal objects in Apache Tomcat from 11.0.0-M1 through 11.0.0-M11, from 10.1.0-M1 through 10.1.13, from 9.0.0-M1 through 9.0… | |||
| CVE-2023-47234 | medium | — | 5.5 | 2y ago | An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur when processing a crafted BGP UPDATE message with a MP_UNREACH_NLRI attribute and additional NLRI data (that lacks mandatory … | |||
| CVE-2023-5388 | medium | — | 5.5 | 2y ago | Moderate: nss security update | |||
| CVE-2023-5455 | medium | — | 5.5 | 2y ago | RHSA-2024:0143: idm:DL1 security update (Moderate) | |||
| CVE-2023-5367 | medium | — | 5.5 | 3y ago | A out-of-bounds write flaw was found in the xorg-x11-server. This issue occurs due to an incorrect calculation of a buffer offset when copying data stored in the heap in the XIChangeDeviceProperty fu… | |||
| CVE-2023-6478 | medium | — | 5.5 | 3y ago | A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive informat… | |||
| CVE-2023-6377 | medium | — | 5.5 | 3y ago | A flaw was found in xorg-server. Querying or changing XKB button actions such as moving from a touchpad to a mouse can result in out-of-bounds memory reads and writes. This may allow local privilege … | |||
| CVE-2023-40661 | medium | — | 5.5 | 3y ago | RHSA-2023:7876: opensc security update (Moderate) | |||
| CVE-2023-4535 | medium | — | 5.5 | 3y ago | Moderate: opensc security update | |||
| CVE-2023-40660 | medium | — | 5.5 | 3y ago | RHSA-2023:7876: opensc security update (Moderate) | |||
| CVE-2023-51384 | medium | 5.5 | 5.5 | 3y ago | In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these const… | |||
| CVE-2023-36009 | medium | 5.5 | 5.5 | 3y ago | Microsoft Word Information Disclosure Vulnerability | |||
| CVE-2023-53996 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: x86/sev: Make enc_dec_hypercall() accept a size instead of npages enc_dec_hypercall() accepted a page count instead of a size, wh… | |||
| CVE-2023-53657 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ice: Don't tx before switchdev is fully configured There is possibility that ice_eswitch_port_start_xmit might be called while so… | |||
| CVE-2023-54170 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: keys: Fix linking a duplicate key to a keyring's assoc_array When making a DNS query inside the kernel using dns_query(), the req… | |||
| CVE-2023-43804 | medium | — | 5.5 | 3y ago | Moderate: python3.11-urllib3 security update | |||
| CVE-2023-39615 | medium | — | 5.5 | 3y ago | Xmlsoft Libxml2 v2.11.0 was discovered to contain an out-of-bounds read via the xmlSAX2StartElement() function at /libxml2/SAX2.c. This vulnerability allows attackers to cause a Denial of Service (Do… | |||
| CVE-2023-6460 | medium | 5.5 | 5.5 | 3y ago | Logging of the firestore key within nodejs-firestore | |||
| CVE-2023-20240 | medium | 5.5 | 5.5 | 3y ago | Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an a… | |||
| CVE-2023-44357 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-44348 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-44360 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-44361 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker c… | |||
| CVE-2023-44358 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-44339 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-36049 | medium | — | 5.5 | 3y ago | RHSA-2023:7258: dotnet6.0 security update (Moderate) | |||
| CVE-2023-36558 | medium | — | 5.5 | 3y ago | RHSA-2023:7258: dotnet6.0 security update (Moderate) | |||
| CVE-2023-3301 | medium | — | 5.5 | 3y ago | A flaw was found in QEMU. The async nature of hot-unplug enables a race scenario where the net device backend is cleared before the virtio-net pci frontend has been unplugged. A malicious guest could… | |||
| CVE-2023-4042 | medium | — | 5.5 | 3y ago | RHSA-2023:7053: ghostscript security and bug fix update (Moderate) | |||
| CVE-2023-53623 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix swap_info_struct race between swapoff and get_swap_pages() The si->lock must be held when deleting the si from the a… | |||
| CVE-2023-28708 | medium | — | 5.5 | 3y ago | When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11.0.0-M1 to … | |||
| CVE-2023-53089 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix task hung in ext4_xattr_delete_inode Syzbot reported a hung task problem: =============================================… | |||
| CVE-2023-26769 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c. | |||
| CVE-2023-26768 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions. | |||
| CVE-2023-26767 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint. | |||
| CVE-2023-34966 | medium | — | 5.5 | 3y ago | RHSA-2023:7139: samba security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-2283 | medium | — | 5.5 | 3y ago | RHSA-2023:3839: libssh security update (Moderate) | |||
| CVE-2023-38197 | medium | — | 5.5 | 3y ago | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion. | |||
| CVE-2023-1667 | medium | — | 5.5 | 3y ago | RHSA-2023:3839: libssh security update (Moderate) | |||
| CVE-2023-28642 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-28100 | medium | — | 5.5 | 3y ago | RHSA-2023:7038: flatpak security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-3138 | medium | — | 5.5 | 3y ago | RHSA-2023:7029: libX11 security update (Moderate) | |||
| CVE-2023-1672 | medium | — | 5.5 | 3y ago | RHSA-2023:7022: tang security and bug fix update (Moderate) | |||
| CVE-2023-2952 | medium | — | 5.5 | 3y ago | RHSA-2023:7015: wireshark security update (Moderate) | |||
| CVE-2023-2856 | medium | — | 5.5 | 3y ago | RHSA-2023:7015: wireshark security update (Moderate) | |||
| CVE-2023-0666 | medium | — | 5.5 | 3y ago | RHSA-2023:7015: wireshark security update (Moderate) | |||
| CVE-2023-33204 | medium | — | 5.5 | 3y ago | RHSA-2023:7010: sysstat security and bug fix update (Moderate) | |||
| CVE-2023-1786 | medium | — | 5.5 | 3y ago | RHSA-2023:6943: cloud-init security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-25173 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-25809 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-27561 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-26966 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-53292 | medium | 5.5 | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none After grabbing q->sysfs_lock, q->elevator may become NULL b… | |||
| CVE-2023-36054 | medium | — | 5.5 | 3y ago | Moderate: krb5 security and bug fix update | |||
| CVE-2023-34241 | medium | — | 5.5 | 3y ago | RHSA-2023:7165: cups security and bug fix update (Moderate) | |||
| CVE-2023-53867 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session->s_cap_lock' is rele… | |||
| CVE-2023-54004 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated(). syzbot reported [0] a null-ptr-deref in sk_get_rmem0() while… | |||
| CVE-2023-39975 | medium | — | 5.5 | 3y ago | Moderate: krb5 security and bug fix update | |||
| CVE-2023-38710 | medium | — | 5.5 | 3y ago | RHSA-2023:7052: libreswan security update (Moderate) | |||
| CVE-2023-38711 | medium | — | 5.5 | 3y ago | RHSA-2023:7052: libreswan security update (Moderate) | |||
| CVE-2023-29491 | medium | — | 5.5 | 3y ago | RHSA-2023:5249: ncurses security update (Moderate) | |||
| CVE-2023-53705 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bounds access in ipv6_find_tlv() optlen is fetched without checking whether there is more than one byte to parse… | |||
| CVE-2023-31484 | medium | — | 5.5 | 3y ago | RHSA-2024:3094: perl-CPAN security update (Moderate) | |||
| CVE-2023-3750 | medium | — | 5.5 | 3y ago | Moderate: libvirt security, bug fix, and enhancement update | |||
| CVE-2023-2680 | medium | — | 5.5 | 3y ago | This CVE exists because of an incomplete fix for CVE-2021-3750. More specifically, the qemu-kvm package as released for Red Hat Enterprise Linux 9.1 via RHSA-2022:7967 included a version of qemu-kvm … | |||
| CVE-2023-42669 | medium | — | 5.5 | 3y ago | RHSA-2023:7467: samba security update (Moderate) | |||
| CVE-2023-33460 | medium | — | 5.5 | 3y ago | RHSA-2023:7057: yajl security update (Moderate) | |||
| CVE-2023-24998 | medium | — | 5.5 | 3y ago | Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploa… | |||
| CVE-2023-3978 | medium | — | 5.5 | 3y ago | Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack. | |||
| CVE-2023-1981 | medium | — | 5.5 | 3y ago | Moderate: avahi security update | |||
| CVE-2023-32324 | medium | — | 5.5 | 3y ago | RHSA-2023:7165: cups security and bug fix update (Moderate) | |||
| CVE-2023-0836 | medium | — | 5.5 | 3y ago | Moderate: haproxy security and bug fix update | |||
| CVE-2023-28879 | medium | — | 5.5 | 3y ago | RHSA-2023:7053: ghostscript security and bug fix update (Moderate) | |||
| CVE-2023-35789 | medium | — | 5.5 | 3y ago | RHSA-2023:7150: librabbitmq security update (Moderate) | |||
| CVE-2023-34968 | medium | — | 5.5 | 3y ago | RHSA-2023:7139: samba security, bug fix, and enhancement update (Moderate) |