CVEs from 2023
Total
6,468
critical
critical 221
high
high 1,481
medium
medium 1,383
low
low 30
% Critical
3.4%
% with KEV
2.5%
% with exploit
3.0%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- registrationmagic 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- cbot_panel 6
- codeready_linux_builder_eus 6
- openstack_platform 6
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-54108 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-54131 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-54195 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix timeout of a call that hasn't yet been granted a channel afs_make_call() calls rxrpc_kernel_begin_call() to begin a ca… | |||
| CVE-2023-54200 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: always release netdev hooks from notifier This reverts "netfilter: nf_tables: skip netdev events generated … | |||
| CVE-2023-54202 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-54245 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: tx-macro: Fix for KASAN: slab-out-of-bounds When we run syzkaller we get below Out of Bound. "KASAN: slab-out-o… | |||
| CVE-2023-54309 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation /dev/vtpmx is made visible before 'workqueue' is initialized, wh… | |||
| CVE-2023-54317 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-27954 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-27932 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32393 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-0597 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-38599 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1076 | high | — | 8.0 | 3y ago | A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While it will be often correct, as tuntap devi… | |||
| CVE-2023-1073 | high | — | 8.0 | 3y ago | RHSA-2024:0897: kernel security update (Important) | |||
| CVE-2023-1074 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1077 | high | — | 8.0 | 3y ago | In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition woul… | |||
| CVE-2023-38611 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1206 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-40397 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-42833 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3972 | high | — | 8.0 | 3y ago | RHSA-2023:6283: insights-client security update (Important) | |||
| CVE-2023-43115 | high | — | 8.0 | 3y ago | In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer par… | |||
| CVE-2023-5730 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5725 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5728 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5732 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5724 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5721 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-0662 | high | — | 8.0 | 3y ago | RHSA-2023:5927: php:8.0 security update (Important) | |||
| CVE-2023-45143 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-39333 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-38552 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-3341 | high | — | 8.0 | 3y ago | RHSA-2023:5474: bind security update (Important) | |||
| CVE-2023-5157 | high | — | 8.0 | 3y ago | RHSA-2023:5683: mariadb:10.5 security update (Important) | |||
| CVE-2023-44488 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-36664 | high | — | 8.0 | 3y ago | Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). | |||
| CVE-2023-40217 | high | — | 8.0 | 3y ago | RHSA-2023:5998: python39:3.9 and python39-devel:3.9 security update (Important) | |||
| CVE-2023-5169 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5171 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-3600 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5176 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-32559 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32006 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32002 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-41419 | high | — | 8.0 | 3y ago | RHSA-2024:8834: python-gevent security update (Important) | |||
| CVE-2023-20900 | high | — | 8.0 | 3y ago | RHSA-2023:5312: open-vm-tools security update (Important) | |||
| CVE-2023-38802 | high | — | 8.0 | 3y ago | RHSA-2023:5219: frr security and bug fix update (Important) | |||
| CVE-2023-53556 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1637 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-3354 | high | — | 8.0 | 3y ago | RHSA-2023:5264: virt:rhel and virt-devel:rhel security and bug fix update (Important) | |||
| CVE-2023-3610 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-20593 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-4004 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-3776 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-31248 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-53383 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes … | |||
| CVE-2023-53769 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21102 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-3390 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-5129 | high | — | 8.0 | 3y ago | RHSA-2023:5309: libwebp security update (Important) | |||
| CVE-2023-4147 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-35001 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-44466 | high | — | 8.0 | 3y ago | RHSA-2023:5244: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-23908 | high | — | 8.0 | 3y ago | RHEA-2023:4995: microcode_ctl bug fix and enhancement update (Important) | |||
| CVE-2023-4051 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4577 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4585 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4581 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4578 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4583 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4573 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4580 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4574 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4575 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4584 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4053 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-32360 | high | — | 8.0 | 3y ago | RHSA-2023:4864: cups security update (Important) | |||
| CVE-2023-3899 | high | — | 8.0 | 3y ago | RHSA-2023:4706: subscription-manager security update (Important) | |||
| CVE-2023-38497 | high | — | 8.0 | 3y ago | RHSA-2023:4635: rust-toolset:rhel8 security update (Important) | |||
| CVE-2023-35390 | high | — | 8.0 | 3y ago | RHSA-2023:4645: .NET 6.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-40267 | high | — | 8.0 | 3y ago | GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439. | |||
| CVE-2023-33953 | high | — | 8.0 | 3y ago | Excessive Iteration in gRPC | |||
| CVE-2023-1281 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-1829 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-38403 | high | — | 8.0 | 3y ago | RHSA-2023:4570: iperf3 security update (Important) | |||
| CVE-2023-3417 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4046 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4045 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4057 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4056 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4049 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4050 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4055 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4048 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4047 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-37464 | high | — | 8.0 | 3y ago | RHSA-2023:4418: mod_auth_openidc:2.3 security update (Important) | |||
| CVE-2023-38408 | high | — | 8.0 | 3y ago | RHSA-2023:4419: openssh security update (Important) | |||
| CVE-2023-3090 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-0458 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) |