CVEs from 2023
Total
6,110
critical
critical 239
high
high 1,527
medium
medium 1,390
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-53861 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4_mb_good_group Group corruption check will access memory of grp and will trigger kernel crash… | |||
| CVE-2023-54010 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPICA: ACPICA: check null return of ACPI_ALLOCATE_ZEROED in acpi_db_display_objects ACPICA commit 0d5f467d6a0ba852ea3aad68663cbc… | |||
| CVE-2023-54019 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroup_file_release causes UAF issues w… | |||
| CVE-2023-54066 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer In gl861_i2c_master_xfer, msg is controlled by user. When m… | |||
| CVE-2023-52635 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop resu… | |||
| CVE-2023-53997 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: of: fix double-free on unregistration Since commit 3d439b1a2ad3 ("thermal/core: Alloc-copy-free the thermal zone paramet… | |||
| CVE-2023-52477 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/h… | |||
| CVE-2023-50229 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-53249 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe Use devm_of_iomap() instead of of_iomap() to automatically handle th… | |||
| CVE-2023-45866 | medium | — | 5.5 | 2y ago | RHSA-2024:11154: bluez security update (Moderate) | |||
| CVE-2023-52758 | medium | — | 5.5 | 2y ago | RHSA-2024:9315: kernel security update (Moderate) | |||
| CVE-2023-51764 | medium | — | 5.5 | 2y ago | Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpd_data_restrictions=reject_unauth_pipelining and smtpd_discard_ehlo_keywords=chunking (or certain other options that exist in re… | |||
| CVE-2023-53687 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() when iterating clk When the best clk is searched, we itera… | |||
| CVE-2023-53697 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nvdimm: Fix memleak of pmu attr_groups in unregister_nvdimm_pmu() Memory pointed by 'nd_pmu->pmu.attr_groups' is allocated in fun… | |||
| CVE-2023-53674 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: Fix memory leak in devm_clk_notifier_register() devm_clk_notifier_register() allocates a devres resource for clk notifier bu… | |||
| CVE-2023-53662 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup} If the filename casefolding fails, we'll be leaking memory f… | |||
| CVE-2023-53613 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: dax: Fix dax_mapping_release() use after free A CONFIG_DEBUG_KOBJECT_RELEASE test of removing a device-dax region provider (like … | |||
| CVE-2023-53572 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: scu: use _safe list iterator to avoid a use after free This loop is freeing "clk" so it needs to use list_for_each_entr… | |||
| CVE-2023-53558 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic() pr_info() is called with rtp->cbs_gbl_lock spin lock locked. … | |||
| CVE-2023-53531 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: null_blk: fix poll request timeout handling When doing io_uring benchmark on /dev/nullb0, it's easy to crash the kernel if poll r… | |||
| CVE-2023-50967 | medium | — | 5.5 | 2y ago | RHSA-2024:5294: jose security update (Moderate) | |||
| CVE-2023-53505 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise i… | |||
| CVE-2023-53503 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: allow ext4_get_group_info() to fail Previously, ext4_get_group_info() would treat an invalid group number as BUG(), since i… | |||
| CVE-2023-53483 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Check for null return of devm_kzalloc() in fch_misc_setup() devm_kzalloc() may fail, clk_data->name might be NUL… | |||
| CVE-2023-53470 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ionic: catch failure from devlink_alloc Add a check for NULL on the alloc return. If devlink_alloc() fails and we try to use dev… | |||
| CVE-2023-54165 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: zsmalloc: move LRU update from zs_map_object() to zs_malloc() Under memory pressure, we sometimes observe the following crash: [… | |||
| CVE-2023-53402 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: kernel/printk/index.c: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() call… | |||
| CVE-2023-53401 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required() KCSAN found an issue in obj_stock_flush_required(): stock-… | |||
| CVE-2023-51589 | medium | — | 5.5 | 2y ago | RHSA-2025:4043: bluez security update (Moderate) | |||
| CVE-2023-53397 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: modpost: fix off by one in is_executable_section() The > comparison should be >= to prevent an out of bounds array access. | |||
| CVE-2023-50230 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-53395 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPICA: Add AML_NO_OPERAND_RESOLVE flag to Timer ACPICA commit 90310989a0790032f5a0140741ff09b545af4bc5 According to the ACPI sp… | |||
| CVE-2023-53391 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfs_init_fs_context() for the … | |||
| CVE-2023-53291 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: rcu/rcuscale: Stop kfree_scale_thread thread(s) after unloading rcuscale Running the 'kfree_rcu_test' test case [1] results in a … | |||
| CVE-2023-44431 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |||
| CVE-2023-53264 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe Use devm_of_iomap() instead of of_iomap() to automatically han… | |||
| CVE-2023-52473 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix NULL pointer dereference in zone registration error path If device_register() in thermal_zone_device_register_… | |||
| CVE-2023-52462 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: fix check for attempt to corrupt spilled pointer When register is spilled onto a stack as a 1/2/4-byte register, we set slot… | |||
| CVE-2023-53178 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, w… | |||
| CVE-2023-52920 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction… | |||
| CVE-2023-54153 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: turn quotas off if mount failed after enabling quotas Yi found during a review of the patch "ext4: don't BUG on inconsisten… | |||
| CVE-2023-48161 | medium | — | 5.5 | 2y ago | Moderate: java-1.8.0-openjdk security update | |||
| CVE-2023-52658 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-39368 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-22655 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-43490 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-46103 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-38575 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-45733 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |||
| CVE-2023-31356 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |||
| CVE-2023-20584 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |||
| CVE-2023-52801 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-52463 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-6349 | medium | — | 5.5 | 2y ago | RHSA-2024:5941: libvpx security update (Moderate) | |||
| CVE-2023-37920 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security update | |||
| CVE-2023-25433 | medium | — | 5.5 | 2y ago | RHSA-2024:5079: libtiff security update (Moderate) | |||
| CVE-2023-52458 | medium | 5.5 | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-52809 | medium | — | 5.5 | 2y ago | Moderate: kernel security update | |||
| CVE-2023-45237 | medium | — | 5.5 | 2y ago | RHSA-2024:5297: edk2 security update (Moderate) | |||
| CVE-2023-45236 | medium | — | 5.5 | 2y ago | RHSA-2024:5297: edk2 security update (Moderate) | |||
| CVE-2023-31346 | medium | — | 5.5 | 2y ago | RHSA-2024:4262: linux-firmware security update (Moderate) | |||
| CVE-2023-52667 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-52626 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-38264 | medium | — | 5.5 | 2y ago | RHSA-2024:6595: java-1.8.0-ibm security update (Moderate) | |||
| CVE-2023-52598 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: s390/ptrace: handle setting of fpc register correctly If the content of the floating point control (fpc) register of a traced pro… | |||
| CVE-2023-52607 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add kasprintf() returns a pointer to dynamically allocated memory which… | |||
| CVE-2023-43361 | medium | — | 5.5 | 2y ago | RHSA-2024:3095: vorbis-tools security update (Moderate) | |||
| CVE-2023-53266 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Fix possible memory leak of ffh_ctxt Allocated 'ffh_ctxt' memory leak is possible if the SMCCC version and conduit c… | |||
| CVE-2023-53798 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ethtool: Fix uninitialized number of lanes It is not possible to set the number of lanes when setting link modes using the legacy… | |||
| CVE-2023-53648 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: Fix possible NULL dereference in snd_ac97_mixer smatch error: sound/pci/ac97/ac97_codec.c:2354 snd_ac97_mixer() error… | |||
| CVE-2023-53698 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is ru… | |||
| CVE-2023-1513 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, caus… | |||
| CVE-2023-42755 | medium | — | 5.5 | 2y ago | A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r… | |||
| CVE-2023-39192 | medium | — | 5.5 | 2y ago | A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-… | |||
| CVE-2023-52737 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: btrfs: lock the inode in shared mode before starting fiemap Currently fiemap does not take the inode's lock (VFS lock), it only l… | |||
| CVE-2023-5090 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-6240 | medium | — | 5.5 | 2y ago | Moderate: kernel security and bug fix update | |||
| CVE-2023-4692 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |||
| CVE-2023-46316 | medium | — | 5.5 | 2y ago | RHSA-2024:3211: traceroute security update (Moderate) | |||
| CVE-2023-29406 | medium | — | 5.5 | 2y ago | RHSA-2023:7202: container-tools:4.0 security and bug fix update (Moderate) | |||
| CVE-2023-38471 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-38470 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-52323 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security and bug fix update | |||
| CVE-2023-43785 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |||
| CVE-2023-43786 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |||
| CVE-2023-43787 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |||
| CVE-2023-47038 | medium | — | 5.5 | 2y ago | Moderate: perl security update | |||
| CVE-2023-37328 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-base security update | |||
| CVE-2023-52973 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF After a call to console_unlock() in vcs_read() the vc_d… | |||
| CVE-2023-53762 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync Use-after-free can occur in hci_disconnect_all_sync if a connection is de… | |||
| CVE-2023-38469 | medium | — | 5.5 | 2y ago | RHSA-2023:7836: avahi security update (Moderate) | |||
| CVE-2023-3255 | medium | — | 5.5 | 2y ago | A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. A wrong exit condition may lead to an infinite loop when inflating an attacker controlled zlib buffer in the … | |||
| CVE-2023-42467 | medium | — | 5.5 | 2y ago | QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU … | |||
| CVE-2023-6683 | medium | — | 5.5 | 2y ago | A flaw was found in the QEMU built-in VNC server while processing ClientCutText messages. The qemu_clipboard_request() function can be reached before vnc_server_cut_text_caps() was called and had the… | |||
| CVE-2023-5088 | medium | — | 5.5 | 2y ago | A bug in QEMU could cause a guest I/O operation otherwise addressed to an arbitrary disk offset to be targeted to offset 0 instead (potentially overwriting the VM's boot code). This could be used, fo… | |||
| CVE-2023-7008 | medium | — | 5.5 | 2y ago | A vulnerability was found in systemd-resolved. This issue may allow systemd-resolved to accept records of DNSSEC-signed domains even when they have no signature, allowing man-in-the-middles (or the u… | |||
| CVE-2023-45287 | medium | — | 5.5 | 2y ago | Moderate: container-tools:rhel8 security update | |||
| CVE-2023-53275 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync() The variable codec->regmap is often… | |||
| CVE-2023-53297 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp conn->chan_lock isn't acquired before l2cap_get_chan_by_scid, … | |||
| CVE-2023-53322 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Wait for io return on terminate rport System crash due to use after free. Current code allows terminate_rport_io t… |