CVEs from 2023
Total
6,112
critical
critical 239
high
high 1,529
medium
medium 1,388
low
low 32
% Critical
3.9%
% with KEV
2.7%
% with exploit
3.5%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- ftmg-esr50sxx 8
- ftmg-esn40sxx 8
- ftmg-esd25axx 8
- ftmg-esr40sxx 8
- ftmg-esd15axx 8
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-25809 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-39976 | medium | — | 5.5 | 3y ago | Moderate: libqb security update | |||
| CVE-2023-3576 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-25173 | medium | — | 5.5 | 3y ago | RHSA-2023:6939: container-tools:rhel8 security and bug fix update (Moderate) | |||
| CVE-2023-26965 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-3316 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-1183 | medium | — | 5.5 | 3y ago | Moderate: libreoffice security update | |||
| CVE-2023-31486 | medium | — | 5.5 | 3y ago | Moderate: perl-HTTP-Tiny security update | |||
| CVE-2023-0950 | medium | — | 5.5 | 3y ago | Moderate: libreoffice security update | |||
| CVE-2023-2731 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-53623 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix swap_info_struct race between swapoff and get_swap_pages() The si->lock must be held when deleting the si from the a… | |||
| CVE-2023-28370 | medium | — | 5.5 | 3y ago | Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having user acc… | |||
| CVE-2023-28708 | medium | — | 5.5 | 3y ago | When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11.0.0-M1 to … | |||
| CVE-2023-37369 | medium | — | 5.5 | 3y ago | In Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2, there can be an application crash in QXmlStreamReader via a crafted XML string that triggers a situation in which a prefi… | |||
| CVE-2023-38711 | medium | — | 5.5 | 3y ago | RHSA-2023:7052: libreswan security update (Moderate) | |||
| CVE-2023-27522 | medium | — | 5.5 | 3y ago | HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55. Special characters in the origin response header c… | |||
| CVE-2023-34241 | medium | — | 5.5 | 3y ago | RHSA-2023:7165: cups security and bug fix update (Moderate) | |||
| CVE-2023-53089 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix task hung in ext4_xattr_delete_inode Syzbot reported a hung task problem: =============================================… | |||
| CVE-2023-26769 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c. | |||
| CVE-2023-26768 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions. | |||
| CVE-2023-26767 | medium | — | 5.5 | 3y ago | Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint. | |||
| CVE-2023-28625 | medium | — | 5.5 | 3y ago | RHSA-2023:6940: mod_auth_openidc:2.3 security and bug fix update (Moderate) | |||
| CVE-2023-24998 | medium | — | 5.5 | 3y ago | Apache Commons FileUpload before 1.5 does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploa… | |||
| CVE-2023-53070 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: PPTT: Fix to avoid sleep in the atomic context when PPTT is absent Commit 0c80f9e165f8 ("ACPI: PPTT: Leave the table mapped… | |||
| CVE-2023-33460 | medium | — | 5.5 | 3y ago | RHSA-2023:7057: yajl security update (Moderate) | |||
| CVE-2023-4091 | medium | — | 5.5 | 3y ago | RHSA-2023:7467: samba security update (Moderate) | |||
| CVE-2023-28879 | medium | — | 5.5 | 3y ago | RHSA-2023:7053: ghostscript security and bug fix update (Moderate) | |||
| CVE-2023-53867 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session->s_cap_lock' is rele… | |||
| CVE-2023-38712 | medium | — | 5.5 | 3y ago | RHSA-2023:7052: libreswan security update (Moderate) | |||
| CVE-2023-27533 | medium | — | 5.5 | 3y ago | A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during serve… | |||
| CVE-2023-53705 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix out-of-bounds access in ipv6_find_tlv() optlen is fetched without checking whether there is more than one byte to parse… | |||
| CVE-2023-28450 | medium | — | 5.5 | 3y ago | RHSA-2023:7046: dnsmasq security and bug fix update (Moderate) | |||
| CVE-2023-3978 | medium | — | 5.5 | 3y ago | Text nodes not in the HTML namespace are incorrectly literally rendered, causing text which should be escaped to not be. This could lead to an XSS attack. | |||
| CVE-2023-28100 | medium | — | 5.5 | 3y ago | RHSA-2023:7038: flatpak security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-2255 | medium | — | 5.5 | 3y ago | Moderate: libreoffice security update | |||
| CVE-2023-41105 | medium | — | 5.5 | 3y ago | RHSA-2023:7024: python3.11 security update (Moderate) | |||
| CVE-2023-3138 | medium | — | 5.5 | 3y ago | RHSA-2023:7029: libX11 security update (Moderate) | |||
| CVE-2023-1667 | medium | — | 5.5 | 3y ago | RHSA-2023:3839: libssh security update (Moderate) | |||
| CVE-2023-39321 | medium | — | 5.5 | 3y ago | RHSA-2024:2988: container-tools:rhel8 security update (Moderate) | |||
| CVE-2023-39322 | medium | — | 5.5 | 3y ago | RHSA-2024:2988: container-tools:rhel8 security update (Moderate) | |||
| CVE-2023-54057 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Add a length limitation for the ivrs_acpihid command-line parameter The 'acpiid' buffer in the parse_ivrs_acpihid func… | |||
| CVE-2023-0836 | medium | — | 5.5 | 3y ago | Moderate: haproxy security and bug fix update | |||
| CVE-2023-3750 | medium | — | 5.5 | 3y ago | Moderate: libvirt security, bug fix, and enhancement update | |||
| CVE-2023-34410 | medium | — | 5.5 | 3y ago | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.2. Certificate validation for TLS does not always consider whether the root of a chain is a configur… | |||
| CVE-2023-2283 | medium | — | 5.5 | 3y ago | RHSA-2023:3839: libssh security update (Moderate) | |||
| CVE-2023-27538 | medium | — | 5.5 | 3y ago | An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have pr… | |||
| CVE-2023-39318 | medium | — | 5.5 | 3y ago | RHSA-2024:2988: container-tools:rhel8 security update (Moderate) | |||
| CVE-2023-39319 | medium | — | 5.5 | 3y ago | RHSA-2024:2988: container-tools:rhel8 security update (Moderate) | |||
| CVE-2023-34966 | medium | — | 5.5 | 3y ago | RHSA-2023:7139: samba security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-53576 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: null_blk: Always check queue mode setting from configfs Make sure to check device queue mode in the null_validate_conf() and retu… | |||
| CVE-2023-38197 | medium | — | 5.5 | 3y ago | An issue was discovered in Qt before 5.15.15, 6.x before 6.2.10, and 6.3.x through 6.5.x before 6.5.3. There are infinite loops in recursive entity expansion. | |||
| CVE-2023-34968 | medium | — | 5.5 | 3y ago | RHSA-2023:7139: samba security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-35789 | medium | — | 5.5 | 3y ago | RHSA-2023:7150: librabbitmq security update (Moderate) | |||
| CVE-2023-32324 | medium | — | 5.5 | 3y ago | RHSA-2023:7165: cups security and bug fix update (Moderate) | |||
| CVE-2023-31484 | medium | — | 5.5 | 3y ago | RHSA-2024:3094: perl-CPAN security update (Moderate) | |||
| CVE-2023-1981 | medium | — | 5.5 | 3y ago | Moderate: avahi security update | |||
| CVE-2023-28101 | medium | — | 5.5 | 3y ago | RHSA-2023:7038: flatpak security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-53088 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: mptcp: fix UaF in listener shutdown As reported by Christoph after having refactored the passive socket initialization, the mptcp… | |||
| CVE-2023-53103 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: bonding: restore bond's IFF_SLAVE flag if a non-eth dev enslave fails syzbot reported a warning[1] where the bond device itself i… | |||
| CVE-2023-53205 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: KVM: s390/diag: fix racy access of physical cpu number in diag 9c handler We do check for target CPU == -1, but this might change… | |||
| CVE-2023-26966 | medium | — | 5.5 | 3y ago | Moderate: libtiff security update | |||
| CVE-2023-53224 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: Fix function prototype mismatch for ext4_feat_ktype With clang's kernel control flow integrity (kCFI, CONFIG_CFI_CLANG), in… | |||
| CVE-2023-53292 | medium | 5.5 | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none After grabbing q->sysfs_lock, q->elevator may become NULL b… | |||
| CVE-2023-53746 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: fix memory leak in vfio_ap device driver The device release callback function invoked to release the matrix device … | |||
| CVE-2023-54004 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: udplite: Fix NULL pointer dereference in __sk_mem_raise_allocated(). syzbot reported [0] a null-ptr-deref in sk_get_rmem0() while… | |||
| CVE-2023-28709 | medium | — | 5.5 | 3y ago | The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used suc… | |||
| CVE-2023-54320 | medium | — | 5.5 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix memory leak in amd_pmc_stb_debugfs_open_v2() Function amd_pmc_stb_debugfs_open_v2() may be called when… | |||
| CVE-2023-2858 | medium | — | 5.5 | 3y ago | RHSA-2023:7015: wireshark security update (Moderate) | |||
| CVE-2023-0668 | medium | — | 5.5 | 3y ago | Moderate: wireshark security update | |||
| CVE-2023-2855 | medium | — | 5.5 | 3y ago | Moderate: wireshark security update | |||
| CVE-2023-36054 | medium | — | 5.5 | 3y ago | Moderate: krb5 security and bug fix update | |||
| CVE-2023-29491 | medium | — | 5.5 | 3y ago | RHSA-2023:5249: ncurses security update (Moderate) | |||
| CVE-2023-39975 | medium | — | 5.5 | 3y ago | Moderate: krb5 security and bug fix update | |||
| CVE-2023-3961 | medium | — | 5.5 | 3y ago | RHSA-2023:7467: samba security update (Moderate) | |||
| CVE-2023-34967 | medium | — | 5.5 | 3y ago | RHSA-2023:7139: samba security, bug fix, and enhancement update (Moderate) | |||
| CVE-2023-44271 | medium | — | 5.5 | 3y ago | RHSA-2024:3005: python-pillow security update (Moderate) | |||
| CVE-2023-3824 | medium | — | 5.5 | 3y ago | RHSA-2024:10952: php:7.4 security update (Moderate) | |||
| CVE-2023-0568 | medium | — | 5.5 | 3y ago | RHSA-2024:10952: php:7.4 security update (Moderate) | |||
| CVE-2023-3247 | medium | — | 5.5 | 3y ago | RHSA-2024:10952: php:7.4 security update (Moderate) | |||
| CVE-2023-0567 | medium | — | 5.5 | 3y ago | RHSA-2024:10952: php:7.4 security update (Moderate) | |||
| CVE-2023-3823 | medium | — | 5.5 | 3y ago | RHSA-2024:10952: php:7.4 security update (Moderate) | |||
| CVE-2023-22025 | medium | — | 5.5 | 3y ago | RHSA-2023:6887: java-21-openjdk security and bug fix update (Moderate) | |||
| CVE-2023-22067 | medium | — | 5.5 | 3y ago | RHSA-2024:0866: java-1.8.0-ibm security update (Moderate) | |||
| CVE-2023-39323 | medium | — | 5.5 | 3y ago | RHBA-2023:6928: go-toolset:rhel8 bug fix and enhancement update (Moderate) | |||
| CVE-2023-36799 | medium | — | 5.5 | 3y ago | RHSA-2023:6247: .NET 7.0 security update (Moderate) | |||
| CVE-2023-2602 | medium | — | 5.5 | 3y ago | RHSA-2023:4524: libcap security update (Moderate) | |||
| CVE-2023-20593 | medium | — | 5.5 | 3y ago | Moderate: linux-firmware security update | |||
| CVE-2023-30630 | medium | — | 5.5 | 3y ago | RHSA-2023:5252: dmidecode security update (Moderate) | |||
| CVE-2023-2603 | medium | — | 5.5 | 3y ago | RHSA-2023:4524: libcap security update (Moderate) | |||
| CVE-2023-38633 | medium | — | 5.5 | 3y ago | Moderate: librsvg2 security update | |||
| CVE-2023-38201 | medium | — | 5.5 | 3y ago | Moderate: keylime security update | |||
| CVE-2023-38200 | medium | — | 5.5 | 3y ago | Moderate: keylime security update | |||
| CVE-2023-29303 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker c… | |||
| CVE-2023-38245 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Information Disclosure vulnerability. An unauthenticated attacker could leverage this vulner… | |||
| CVE-2023-38238 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by a Use-After-Free vulnerability that could lead to disclosure of sensitive memory. An attacker c… | |||
| CVE-2023-38236 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-38235 | medium | 5.5 | 5.5 | 3y ago | Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attac… | |||
| CVE-2023-34969 | medium | — | 5.5 | 3y ago | D-Bus before 1.15.6 sometimes allows unprivileged users to crash dbus-daemon. If a privileged user with control over the dbus-daemon is using the org.freedesktop.DBus.Monitoring interface to monitor … | |||
| CVE-2023-28321 | medium | — | 5.5 | 3y ago | An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when listed as "Subject Alternative Name" in TLS server certificates. curl… | |||
| CVE-2023-30079 | medium | — | 5.5 | 3y ago | Moderate: libeconf security update |