CVEs from 2023
Total
6,112
critical
critical 239
high
high 1,527
medium
medium 1,390
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-50447 | high | — | 8.0 | 2y ago | RHSA-2024:0893: python-pillow security update (Important) | |||
| CVE-2023-2162 | high | — | 8.0 | 2y ago | A use-after-free vulnerability was found in iscsi_sw_tcp_session_create in drivers/scsi/iscsi_tcp.c in SCSI sub-component in the Linux Kernel. In this flaw an attacker could leak kernel internal info… | |||
| CVE-2023-46233 | high | — | 8.0 | 2y ago | RHSA-2024:0806: dotnet7.0 security update (Important) | |||
| CVE-2023-49285 | high | — | 8.0 | 2y ago | RHSA-2024:0046: squid:4 security update (Important) | |||
| CVE-2023-49286 | high | — | 8.0 | 2y ago | RHSA-2024:0046: squid:4 security update (Important) | |||
| CVE-2023-46728 | high | — | 8.0 | 2y ago | RHSA-2024:0046: squid:4 security update (Important) | |||
| CVE-2023-46724 | high | — | 8.0 | 2y ago | RHSA-2024:0046: squid:4 security update (Important) | |||
| CVE-2023-50761 | high | — | 8.0 | 3y ago | RHSA-2024:0003: thunderbird security update (Important) | |||
| CVE-2023-50762 | high | — | 8.0 | 3y ago | RHSA-2024:0003: thunderbird security update (Important) | |||
| CVE-2023-6856 | high | — | 8.0 | 3y ago | The WebGL `DrawElementsInstanced` method was susceptible to a heap buffer overflow when used on systems with the Mesa VM driver. This issue could allow an attacker to perform remote code execution a… | |||
| CVE-2023-6864 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… | |||
| CVE-2023-6863 | high | — | 8.0 | 3y ago | The `ShutdownObserver()` was susceptible to potentially undefined behavior due to its reliance on a dynamic type that lacked a virtual destructor. This vulnerability affects Firefox ESR < 115.6, Thun… | |||
| CVE-2023-6858 | high | — | 8.0 | 3y ago | Firefox was susceptible to a heap buffer overflow in `nsTextFragment` due to insufficient OOM handling. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. | |||
| CVE-2023-6857 | high | — | 8.0 | 3y ago | When resolving a symlink, a race may occur where the buffer passed to `readlink` may actually be smaller than necessary. *This bug only affects Firefox on Unix-based operating systems (Android, Linu… | |||
| CVE-2023-6867 | high | — | 8.0 | 3y ago | The timing of a button click causing a popup to disappear was approximately the same length as the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by… | |||
| CVE-2023-6860 | high | — | 8.0 | 3y ago | The `VideoBridge` allowed any content process to use textures produced by remote decoders. This could be abused to escape the sandbox. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 1… | |||
| CVE-2023-6865 | high | — | 8.0 | 3y ago | `EncryptingOutputStream` was susceptible to exposing uninitialized data. This issue could only be abused in order to write data to a local disk which may have implications for private browsing mode.… | |||
| CVE-2023-6862 | high | — | 8.0 | 3y ago | RHSA-2024:0012: firefox security update (Important) | |||
| CVE-2023-6859 | high | — | 8.0 | 3y ago | A use-after-free condition affected TLS socket creation when under memory pressure. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. | |||
| CVE-2023-6861 | high | — | 8.0 | 3y ago | The `nsWindow::PickerOpen(void)` method was susceptible to a heap buffer overflow when running in headless mode. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. | |||
| CVE-2023-44429 | high | — | 8.0 | 3y ago | Important: gstreamer1-plugins-bad-free security update | |||
| CVE-2023-44446 | high | — | 8.0 | 3y ago | RHSA-2023:7841: gstreamer1-plugins-bad-free security update (Important) | |||
| CVE-2023-39417 | high | — | 8.0 | 3y ago | Important: postgresql:15 security update | |||
| CVE-2023-39418 | high | — | 8.0 | 3y ago | Important: postgresql:15 security update | |||
| CVE-2023-5870 | high | — | 8.0 | 3y ago | Important: postgresql:15 security update | |||
| CVE-2023-5868 | high | — | 8.0 | 3y ago | Important: postgresql:15 security update | |||
| CVE-2023-5869 | high | — | 8.0 | 3y ago | Important: postgresql:15 security update | |||
| CVE-2023-5345 | high | — | 8.0 | 3y ago | A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password… | |||
| CVE-2023-45871 | high | — | 8.0 | 3y ago | An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU. | |||
| CVE-2023-1192 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory re… | |||
| CVE-2023-5557 | high | — | 8.0 | 3y ago | RHSA-2023:7732: tracker-miners security update (Important) | |||
| CVE-2023-2163 | high | — | 8.0 | 3y ago | Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, … | |||
| CVE-2023-52562 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mm/slab_common: fix slab_caches list corruption after kmem_cache_destroy() After the commit in Fixes:, if a module that created a… | |||
| CVE-2023-6207 | high | — | 8.0 | 3y ago | Ownership mismanagement led to a use-after-free in ReadableByteStreams This vulnerability affects Firefox < 120, Firefox ESR < 115.5.0, and Thunderbird < 115.5. | |||
| CVE-2023-6204 | high | — | 8.0 | 3y ago | On some systems—depending on the graphics settings and drivers—it was possible to force an out-of-bounds read and leak memory data into the images created on the canvas element. This vulnerability af… | |||
| CVE-2023-6212 | high | — | 8.0 | 3y ago | Memory safety bugs present in Firefox 119, Firefox ESR 115.4, and Thunderbird 115.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could… | |||
| CVE-2023-6209 | high | — | 8.0 | 3y ago | Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problem… | |||
| CVE-2023-6208 | high | — | 8.0 | 3y ago | When using X11, text selected by the page using the Selection API was erroneously copied into the primary selection, a temporary storage not unlike the clipboard. *This bug only affects Firefox on X1… | |||
| CVE-2023-6206 | high | — | 8.0 | 3y ago | The black fade animation when exiting fullscreen is roughly the length of the anti-clickjacking delay on permission prompts. It was possible to use this fact to surprise users by luring them to click… | |||
| CVE-2023-6205 | high | — | 8.0 | 3y ago | It was possible to cause the use of a MessagePort after it had already been freed, which could potentially have led to an exploitable crash. This vulnerability affects Firefox < 120, Firefox ESR < 11… | |||
| CVE-2023-5824 | high | — | 8.0 | 3y ago | RHSA-2023:7668: squid:4 security update (Important) | |||
| CVE-2023-49288 | high | — | 8.0 | 3y ago | RHSA-2023:7668: squid:4 security update (Important) | |||
| CVE-2023-34058 | high | — | 8.0 | 3y ago | RHSA-2023:7265: open-vm-tools security update (Important) | |||
| CVE-2023-34059 | high | — | 8.0 | 3y ago | RHSA-2023:7265: open-vm-tools security update (Important) | |||
| CVE-2023-28772 | high | — | 8.0 | 3y ago | An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow. | |||
| CVE-2023-53147 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: xfrm: add NULL check in xfrm_update_ae_params Normally, x->replay_esn and x->preplay_esn should be allocated at xfrm_alloc_replay… | |||
| CVE-2023-31436 | high | — | 8.0 | 3y ago | qfq_change_class in net/sched/sch_qfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQ_MIN_LMAX. | |||
| CVE-2023-4132 | high | — | 8.0 | 3y ago | A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user… | |||
| CVE-2023-39332 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-28328 | high | — | 8.0 | 3y ago | A NULL pointer dereference flaw was found in the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. The message from user space is not checked properly before transferring into … | |||
| CVE-2023-3611 | high | — | 8.0 | 3y ago | An out-of-bounds write vulnerability in the Linux kernel's net/sched: sch_qfq component can be exploited to achieve local privilege escalation. The qfq_change_agg() function in net/sched/sch_qfq.c a… | |||
| CVE-2023-4732 | high | — | 8.0 | 3y ago | A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG… | |||
| CVE-2023-35823 | high | — | 8.0 | 3y ago | An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c. | |||
| CVE-2023-35824 | high | — | 8.0 | 3y ago | An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c. | |||
| CVE-2023-39434 | high | — | 8.0 | 3y ago | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Processing web content may lead to arbitrary code execu… | |||
| CVE-2023-53793 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: perf tool x86: Fix perf_env memory leak Found by leak sanitizer: ``` ==1632594==ERROR: LeakSanitizer: detected memory leaks Dire… | |||
| CVE-2023-23455 | high | — | 8.0 | 3y ago | atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_S… | |||
| CVE-2023-1118 | high | — | 8.0 | 3y ago | A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potent… | |||
| CVE-2023-31084 | high | — | 8.0 | 3y ago | An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interrup… | |||
| CVE-2023-53591 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlock in tc route query code Cited commit causes ABBA deadlock[0] when peer flows are created while holding the… | |||
| CVE-2023-53006 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uncleared server->smbd_conn in reconnect In smbd_destroy(), clear the server->smbd_conn pointer after freei… | |||
| CVE-2023-1206 | high | — | 8.0 | 3y ago | A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or w… | |||
| CVE-2023-54308 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: ymfpci: Create card with device-managed snd_devm_card_new() snd_card_ymfpci_remove() was removed in commit c6e6bb5eab74 ("A… | |||
| CVE-2023-27954 | high | — | 8.0 | 3y ago | The issue was addressed by removing origin information. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. A websi… | |||
| CVE-2023-53053 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: erspan: do not use skb_mac_header() in ndo_start_xmit() Drivers should not assume skb_mac_header(skb) == skb->data in their ndo_s… | |||
| CVE-2023-30456 | high | — | 8.0 | 3y ago | An issue was discovered in arch/x86/kvm/vmx/nested.c in the Linux kernel before 6.2.8. nVMX on x86_64 lacks consistency checks for CR0 and CR4. | |||
| CVE-2023-42833 | high | — | 8.0 | 3y ago | A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. | |||
| CVE-2023-53334 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: USB: chipidea: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it… | |||
| CVE-2023-54317 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: dm flakey: don't corrupt the zero page When we need to zero some range on a block device, the function __blkdev_issue_zero_pages … | |||
| CVE-2023-53198 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: raw: Fix NULL deref in raw_get_next(). Dae R. Jeong reported a NULL deref in raw_get_next() [0]. It seems that the repro was run… | |||
| CVE-2023-54321 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential null-ptr-deref in device_add() I got the following null-ptr-deref report while doing fault injection t… | |||
| CVE-2023-53114 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: i40e: Fix kernel crash during reboot when adapter is in recovery mode If the driver detects during probe that firmware is in reco… | |||
| CVE-2023-2269 | high | — | 8.0 | 3y ago | A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub… | |||
| CVE-2023-54309 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation /dev/vtpmx is made visible before 'workqueue' is initialized, wh… | |||
| CVE-2023-52707 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: sched/psi: Fix use-after-free in ep_remove_wait_queue() If a non-root cgroup gets removed when there is a thread that registered … | |||
| CVE-2023-53211 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: driver core: location: Free struct acpi_pld_info *pld before return false struct acpi_pld_info *pld should be freed before the re… | |||
| CVE-2023-1074 | high | — | 8.0 | 3y ago | A memory leak flaw was found in the Linux kernel's Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. T… | |||
| CVE-2023-27932 | high | — | 8.0 | 3y ago | This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, tvOS 16.4, watchOS 9.4. Processing maliciously crafted web c… | |||
| CVE-2023-53002 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix a memory leak with reused mmap_offset drm_vma_node_allow() and drm_vma_node_revoke() should be called in balanced p… | |||
| CVE-2023-53706 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mm/vmemmap/devdax: fix kernel crash when probing devdax devices commit 4917f55b4ef9 ("mm/sparse-vmemmap: improve memory savings f… | |||
| CVE-2023-53319 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Handle kvm_arm_init failure correctly in finalize_pkvm Currently there is no synchronisation between finalize_pkvm() … | |||
| CVE-2023-53010 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: bnxt: Do not read past the end of test names Test names were being concatenated based on a offset beyond the end of the first nam… | |||
| CVE-2023-53031 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: Fix use of mutex in IRQs disabled section Current imc-pmu code triggers a WARNING with CONFIG_DEBUG_ATOMIC_SLEEP… | |||
| CVE-2023-1252 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in the Linux kernel’s Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash … | |||
| CVE-2023-1076 | high | — | 8.0 | 3y ago | A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While it will be often correct, as tuntap devi… | |||
| CVE-2023-53320 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix issues in mpi3mr_get_all_tgt_info() The function mpi3mr_get_all_tgt_info() has four issues: 1) It calculates v… | |||
| CVE-2023-1249 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in the Linux kernel’s core dump subsystem. This flaw allows a local user to crash the system. Only if patch 390031c94211 ("coredump: Use the vma snapshot in fill_files… | |||
| CVE-2023-52997 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ip_metrics_convert() if (!type) continue; if (type > RTAX_MAX) return -EINVAL; … | |||
| CVE-2023-1855 | high | — | 8.0 | 3y ago | A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). This flaw could allow a local attacker to crash the … | |||
| CVE-2023-53594 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: driver core: fix resource leak in device_add() When calling kobject_add() failed in device_add(), it will call cleanup_glue_dir()… | |||
| CVE-2023-38572 | high | — | 8.0 | 3y ago | The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be … | |||
| CVE-2023-53625 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drm/i915/gvt: fix vgpu debugfs clean in remove Check carefully on root debugfs available when destroying vgpu, e.g in remove case… | |||
| CVE-2023-2156 | high | — | 8.0 | 3y ago | A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to … | |||
| CVE-2023-0597 | high | — | 8.0 | 3y ago | A flaw possibility of memory leak in the Linux kernel cpu_entry_area mapping of X86 CPU data to memory was found in the way user can guess location of exception stack(s) or other important data. A lo… | |||
| CVE-2023-3161 | high | — | 8.0 | 3y ago | A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out… | |||
| CVE-2023-1380 | high | — | 8.0 | 3y ago | A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len d… | |||
| CVE-2023-1077 | high | — | 8.0 | 3y ago | In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition woul… | |||
| CVE-2023-53626 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix possible double unlock when moving a directory | |||
| CVE-2023-53333 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nf_conntrack_dccp_packet(… | |||
| CVE-2023-53233 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: net/smc: fix deadlock triggered by cancel_delayed_work_syn() The following LOCKDEP was detected: Workqueue: events smc_lgr_free… |