| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4813 | Glibc: potential use-after-free in gaih_inet() | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.9 | 2023-09-12 21:54:33 | Deep Dive |
| CVE-2023-4918 | Plaintext storage of user password | - | keycloak | High | 8.8 | 2023-09-12 19:25:00 | Deep Dive |
| CVE-2023-0119 | Foreman: stored cross-site scripting in host tab | - | - | Medium | 5.4 | 2023-09-12 15:14:30 | Deep Dive |
| CVE-2022-1415 | Drools: unsafe data deserialization in streamutils | Red Hat | RHPAM 7.13.1 async | High | 8.1 | 2023-09-11 20:20:24 | Deep Dive |
| CVE-2023-4611 | Use after free race between mbind() and vma-locked page fault | - | Kernel | High | 7.0 | 2023-08-29 21:25:53 | Deep Dive |
| CVE-2023-4569 | Kernel: information leak in nft_set_catchall_flush in net/netfilter/nf_tables_api.c | - | Kernel | Medium | 5.5 | 2023-08-28 21:46:13 | Deep Dive |
| CVE-2023-38201 | Keylime: challenge-response protocol bypass during agent registration | Red Hat | Red Hat Enterprise Linux 9 | Medium | 6.5 | 2023-08-25 16:15:39 | Deep Dive |
| CVE-2023-4042 | Ghostscript: incomplete fix for cve-2020-16305 | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.5 | 2023-08-23 12:19:29 | Deep Dive |
| CVE-2023-3899 | Subscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configuration | Red Hat | Red Hat Enterprise Linux 7 | High | 7.8 | 2023-08-23 10:49:12 | Deep Dive |
| CVE-2023-4459 | Kernel: vmxnet3: null pointer dereference in vmxnet3_rq_cleanup() | Red Hat | Red Hat Enterprise Linux 8.2 Advanced Update Support | Medium | 5.5 | 2023-08-21 18:49:13 | Deep Dive |
| CVE-2023-4456 | Openshift-logging: lokistack authorisation is cached too broadly | Red Hat | RHOL-5.5-RHEL-8 | Medium | 5.7 | 2023-08-21 15:19:22 | Deep Dive |
| CVE-2023-4394 | Memory leak in btrfs_get_dev_args_from_path() | - | Kernel | Medium | 6.7 | 2023-08-17 12:49:14 | Deep Dive |
| CVE-2023-4387 | Kernel: vmxnet3: use-after-free in vmxnet3_rq_alloc_rx_buf() | Red Hat | Red Hat Enterprise Linux 8 | High | 7.1 | 2023-08-16 18:49:11 | Deep Dive |
| CVE-2023-4389 | Kernel: btrfs: double free in btrfs_get_root_ref() | - | Kernel | High | 7.0 | 2023-08-16 18:49:11 | Deep Dive |
| CVE-2023-4385 | Kernel: jfs: null pointer dereference in dbfree() | Red Hat | Red Hat Enterprise Linux 6 | Medium | 5.5 | 2023-08-16 16:49:18 | Deep Dive |
| CVE-2023-39418 | Postgresql: merge fails to enforce update or select row security policies | Red Hat | Red Hat Enterprise Linux 8 | Low | 3.1 | 2023-08-11 12:19:16 | Deep Dive |
| CVE-2023-39417 | Postgresql: extension script @substitutions@ within quoting allow sql injection | Red Hat | Red Hat Advanced Cluster Security 4.2 | High | 7.5 | 2023-08-11 12:19:15 | Deep Dive |
| CVE-2023-4273 | Kernel: exfat: stack overflow in exfat_get_uniname_from_ext_entry | Red Hat | Red Hat Enterprise Linux 9 | Medium | 6.0 | 2023-08-09 14:53:45 | Deep Dive |
| CVE-2023-4147 | Kernel: netfilter: nf_tables_newrule when adding a rule with nfta_rule_chain_id leads to use-after-free | Red Hat | Red Hat Enterprise Linux 9 | High | 7.8 | 2023-08-07 13:19:44 | Deep Dive |
| CVE-2023-4194 | Kernel: tap: tap_open(): correctly initialize socket uid next fix of i_uid to current_fsuid | Red Hat | Red Hat Enterprise Linux 9 | Medium | 5.5 | 2023-08-07 13:19:44 | Deep Dive |