| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-5366 | Openvswitch don't match packets on nd_target field | - | openvswitch | High | 7.1 | 2023-10-06 17:43:34 | Deep Dive |
| CVE-2023-41175 | Libtiff: potential integer overflow in raw2tiff.c | - | - | Medium | 6.5 | 2023-10-05 18:55:27 | Deep Dive |
| CVE-2023-40745 | Libtiff: integer overflow in tiffcp.c | - | - | Medium | 6.5 | 2023-10-05 18:55:26 | Deep Dive |
| CVE-2023-42755 | Kernel: rsvp: out-of-bounds read in rsvp_classify() | Red Hat | Red Hat Enterprise Linux 8 | Medium | 6.5 | 2023-10-05 18:25:23 | Deep Dive |
| CVE-2023-42754 | Kernel: ipv4: null pointer dereference in ipv4_send_dest_unreach() | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.5 | 2023-10-05 18:25:22 | Deep Dive |
| CVE-2022-3248 | Openshift api admission checks does not enforce "custom-host" permissions | - | kubernetes | Medium | 4.4 | 2023-10-05 13:28:28 | Deep Dive |
| CVE-2022-4145 | Content spoofing | - | openshift | Medium | 4.3 | 2023-10-05 12:34:58 | Deep Dive |
| CVE-2023-39191 | Kernel: ebpf: insufficient stack type checks in dynptr | Red Hat | Red Hat Enterprise Linux 9 | High | 8.2 | 2023-10-04 18:03:03 | Deep Dive |
| CVE-2023-3428 | Imagemagick: heap-buffer-overflow in coders/tiff.c | Red Hat | Red Hat Enterprise Linux 6 | Medium | 6.2 | 2023-10-04 18:02:24 | Deep Dive |
| CVE-2023-3576 | Libtiff: memory leak in tiffcrop.c | Red Hat | Red Hat Enterprise Linux 9 | Medium | 5.5 | 2023-10-04 18:02:24 | Deep Dive |
| CVE-2023-3971 | Controller: html injection in custom login info | Red Hat | Red Hat Ansible Automation Platform 2.3 for RHEL 8 | High | 7.3 | 2023-10-04 14:26:02 | Deep Dive |
| CVE-2023-4380 | Platform: token exposed at importing project | Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 | Medium | 6.3 | 2023-10-04 14:24:35 | Deep Dive |
| CVE-2023-4237 | Platform: ec2_key module prints out the private key directly to the standard output | Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 | High | 7.3 | 2023-10-04 14:23:21 | Deep Dive |
| CVE-2023-1832 | Improper authorization check in the server component | - | candlepin-4.3.7 | Medium | 6.8 | 2023-10-04 13:05:38 | Deep Dive |
| CVE-2023-3361 | S3 credentials included when exporting elyra notebook | - | odh-dashboard | High | 7.7 | 2023-10-04 11:34:58 | Deep Dive |
| CVE-2022-4132 | Memory leak on tls connections | - | jss | Medium | 5.9 | 2023-10-04 11:26:11 | Deep Dive |
| CVE-2023-3153 | Service monitor mac flow is not rate limited | - | ovn | Medium | 5.3 | 2023-10-04 11:13:40 | Deep Dive |
| CVE-2023-2422 | Keycloak: oauth client impersonation | Red Hat | Red Hat Single Sign-On 7 | Medium | 5.5 | 2023-10-04 10:59:31 | Deep Dive |
| CVE-2023-1584 | Quarkus-oidc: id and access tokens leak via the authorization code flow | - | - | High | 7.5 | 2023-10-04 10:47:38 | Deep Dive |
| CVE-2023-4586 | Hotrod-client: hot rod client does not enable hostname validation when using tls that lead to a mitm attack | Red Hat | Red Hat Data Grid 8.4.6 | High | 7.4 | 2023-10-04 10:46:15 | Deep Dive |