| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4853 | Quarkus: http security policy bypass | Red Hat | Openshift Serverless 1 on RHEL 8 | High | 8.1 | 2023-09-20 09:47:32 | Deep Dive |
| CVE-2023-4806 | Glibc: potential use-after-free in getaddrinfo() | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.9 | 2023-09-18 16:33:57 | Deep Dive |
| CVE-2023-4527 | Glibc: stack read overflow in getaddrinfo in no-aaaa mode | Red Hat | Red Hat Enterprise Linux 8 | Medium | 6.5 | 2023-09-18 16:32:19 | Deep Dive |
| CVE-2022-3261 | Plain-text passwords saved in /var/log/messages | - | openstack | Medium | 4.4 | 2023-09-15 20:20:18 | Deep Dive |
| CVE-2023-0813 | Network-observability-console-plugin-container: setting loki authtoken configuration to disable or host mode leads to authentication longer being enforced | - | - | High | 7.5 | 2023-09-15 20:17:42 | Deep Dive |
| CVE-2023-0923 | Odh-notebook-controller-container: missing authorization allows for file contents disclosure | Red Hat | RHODS-1.22-RHEL-8 | High | 8.8 | 2023-09-15 20:16:05 | Deep Dive |
| CVE-2022-3466 | Cri-o: security regression of cve-2022-27652 | Red Hat | Red Hat OpenShift Container Platform 4.12 | Medium | 4.8 | 2023-09-15 13:18:28 | Deep Dive |
| CVE-2023-4959 | Quay: cross-site request forgery (csrf) on config-editor page | Red Hat | Red Hat Quay 3 | Medium | 6.5 | 2023-09-15 09:51:27 | Deep Dive |
| CVE-2023-25584 | Out of bounds read in parse_module function in bfd/vms-alpha.c | - | binutils | Medium | 6.3 | 2023-09-14 20:50:58 | Deep Dive |
| CVE-2023-25585 | Field `file_table` of `struct module *module` is uninitialized | - | binutils | Medium | 4.7 | 2023-09-14 20:50:10 | Deep Dive |
| CVE-2023-25586 | Local variable `ch_type` in function `bfd_init_section_decompress_status` can be uninitialized | - | binutils | Medium | 4.7 | 2023-09-14 20:49:15 | Deep Dive |
| CVE-2023-25588 | Field `the_bfd` of `asymbol` is uninitialized in function `bfd_mach_o_get_synthetic_symtab` | - | binutils | Medium | 4.7 | 2023-09-14 20:47:17 | Deep Dive |
| CVE-2023-32611 | G_variant_byteswap() can take a long time with some non-normal inputs | - | glib2 | Medium | 5.5 | 2023-09-14 19:07:19 | Deep Dive |
| CVE-2023-29499 | Gvariant offset table entry size is not checked in is_normal() | - | glib2 | Medium | 5.5 | 2023-09-14 19:06:18 | Deep Dive |
| CVE-2023-32665 | Gvariant deserialisation does not match spec for non-normal data | - | glib2 | Medium | 5.5 | 2023-09-14 19:03:58 | Deep Dive |
| CVE-2023-1108 | Undertow: infinite loop in sslconduit during close | - | - | High | 7.5 | 2023-09-14 14:48:59 | Deep Dive |
| CVE-2023-2680 | Dma reentrancy issue (incomplete fix for cve-2021-3750) | - | qemu | High | 7.5 | 2023-09-13 16:50:54 | Deep Dive |
| CVE-2023-3255 | Qemu: vnc: infinite loop in inflate_buffer() leads to denial of service | Red Hat | Red Hat Enterprise Linux 8 | Medium | 6.5 | 2023-09-13 16:12:52 | Deep Dive |
| CVE-2023-4155 | Sev-es / sev-snp vmgexit double fetch vulnerability | - | kernel | Medium | 5.3 | 2023-09-13 16:11:39 | Deep Dive |
| CVE-2023-3301 | Triggerable assertion due to race condition in hot-unplug | - | qemu | Medium | 5.6 | 2023-09-13 16:09:37 | Deep Dive |