Vulnerabilidades em RedHat
16 resultadosCVE-2019-10172MEDIUMA flaw was found in org.codehaus.jackson:jackson-mapper-asl:1.9.x libraries. XML external entity vulnerabilities similar CVE-2016-3720 also EPSS 17.0%CVE-2019-10202HIGHA series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EAP 7. This CVE fixes CVE-2017-17485, CVE-EPSS 5.2%CVE-2016-9586MEDIUMcurl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the prEPSS 5.0%CVE-2019-10141HIGHA vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulneraEPSS 2.5%CVE-2019-10212MEDIUMA flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. If enabled, an attacker could abuse this EPSS 1.9%CVE-2018-1086MEDIUMpcs before versions 0.9.164 and 0.10 is vulnerable to a debug parameter removal bypass. REST interface of the pcsd service did not properly EPSS 1.7%CVE-2018-5742MEDIUMAn oversight while backporting a feature leads to an assertion failure in buffer.c:420EPSS 1.6%CVE-2015-5201—VDSM and libvirt in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H) 7-7.x before 7-7.2-20151119.0 and 6-6.x before 6-6.7-20151117.EPSS 1.5%CVE-2017-15123MEDIUMA flaw was found in the CloudForms web interface, versions 5.8 - 5.10, where the RSS feed URLs are not properly restricted to authenticated EPSS 1.4%CVE-2019-10150MEDIUMIt was found that OpenShift Container Platform versions 3.6.x - 4.6.0 does not perform SSH Host Key checking when using ssh key authenticatiEPSS 1.4%CVE-2019-10171HIGHIt was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was incorrectly applied in RHEL 7.5. An attacEPSS 1.4%CVE-2019-3834MEDIUMIt was found that the fix for CVE-2014-0114 had been reverted in JBoss Operations Network 3 (JON). This flaw allows attackers to manipulate EPSS 1.0%CVE-2019-10176MEDIUMA flaw was found in OpenShift Container Platform, versions 3.11 and later, in which the CSRF tokens used in the cluster console component weEPSS 0.5%CVE-2013-4280—Insecure temporary file vulnerability in RedHat vsdm 4.9.6.EPSS 0.4%CVE-2019-10142HIGHA flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parametEPSS 0.4%CVE-2019-19341MEDIUMA flaw was found in Ansible Tower, versions 3.6.x before 3.6.2, where files in '/var/backup/tower' are left world-readable. These files inclEPSS 0.3%