CVEs from 2023
Total
6,468
critical
critical 221
high
high 1,481
medium
medium 1,383
low
low 30
% Critical
3.4%
% with KEV
2.5%
% with exploit
3.0%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- registrationmagic 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- cbot_panel 6
- codeready_linux_builder_eus 6
- openstack_platform 6
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-53670 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: nvme-core: fix dev_pm_qos memleak Call dev_pm_qos_hide_latency_tolerance() in the error unwind patch to avoid following kmemleak:… | |||
| CVE-2023-53669 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: tcp: fix skb_copy_ubufs() vs BIG TCP David Ahern reported crashes in skb_copy_ubufs() caused by TCP tx zerocopy using hugepages, … | |||
| CVE-2023-53656 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: drivers/perf: hisi: Don't migrate perf to the CPU going to teardown The driver needs to migrate the perf context if the current u… | |||
| CVE-2023-53605 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53602 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53006 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: cifs: Fix oops due to uncleared server->smbd_conn in reconnect In smbd_destroy(), clear the server->smbd_conn pointer after freei… | |||
| CVE-2023-53010 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53065 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output syzkaller reportes a KASAN issue with … | |||
| CVE-2023-53594 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53077 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53078 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53168 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: usb: ucsi_acpi: Increase the command completion timeout Commit 130a96d698d7 ("usb: typec: ucsi: acpi: Increase command completion… | |||
| CVE-2023-53171 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: vfio/type1: prevent underflow of locked_vm via exec() When a vfio container is preserved across exec, the task does not change, b… | |||
| CVE-2023-53524 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53229 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53232 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53461 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: io_uring: wait interruptibly for request completions on exit WHen the ring exits, cleanup is done and the final cancelation and w… | |||
| CVE-2023-53319 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Handle kvm_arm_init failure correctly in finalize_pkvm Currently there is no synchronisation between finalize_pkvm() … | |||
| CVE-2023-53387 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix device management cmd timeout flow In the UFS error handling flow, the host will send a device management cm… | |||
| CVE-2023-53390 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53453 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3972 | high | — | 8.0 | 3y ago | RHSA-2023:6283: insights-client security update (Important) | |||
| CVE-2023-43115 | high | — | 8.0 | 3y ago | In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer par… | |||
| CVE-2023-5721 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5725 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5730 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5732 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5724 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5728 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-0662 | high | — | 8.0 | 3y ago | RHSA-2023:5927: php:8.0 security update (Important) | |||
| CVE-2023-45143 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-39333 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-38552 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-5157 | high | — | 8.0 | 3y ago | RHSA-2023:5683: mariadb:10.5 security update (Important) | |||
| CVE-2023-3341 | high | — | 8.0 | 3y ago | RHSA-2023:5474: bind security update (Important) | |||
| CVE-2023-44488 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-36664 | high | — | 8.0 | 3y ago | Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). | |||
| CVE-2023-40217 | high | — | 8.0 | 3y ago | RHSA-2023:5998: python39:3.9 and python39-devel:3.9 security update (Important) | |||
| CVE-2023-3600 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5171 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5176 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5169 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-32559 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32006 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32002 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-41419 | high | — | 8.0 | 3y ago | RHSA-2024:8834: python-gevent security update (Important) | |||
| CVE-2023-20900 | high | — | 8.0 | 3y ago | RHSA-2023:5312: open-vm-tools security update (Important) | |||
| CVE-2023-38802 | high | — | 8.0 | 3y ago | RHSA-2023:5219: frr security and bug fix update (Important) | |||
| CVE-2023-53383 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes … | |||
| CVE-2023-4147 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-5129 | high | — | 8.0 | 3y ago | RHSA-2023:5309: libwebp security update (Important) | |||
| CVE-2023-31248 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-3610 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-21102 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-3354 | high | — | 8.0 | 3y ago | RHSA-2023:5264: virt:rhel and virt-devel:rhel security and bug fix update (Important) | |||
| CVE-2023-35001 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-20593 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-53556 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3776 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-4004 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-44466 | high | — | 8.0 | 3y ago | RHSA-2023:5244: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53769 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3390 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-1637 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-23908 | high | — | 8.0 | 3y ago | RHEA-2023:4995: microcode_ctl bug fix and enhancement update (Important) | |||
| CVE-2023-4578 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4584 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4585 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4053 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4583 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4574 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4573 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4575 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4581 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4051 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4577 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4580 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-32360 | high | — | 8.0 | 3y ago | RHSA-2023:4864: cups security update (Important) | |||
| CVE-2023-3899 | high | — | 8.0 | 3y ago | RHSA-2023:4706: subscription-manager security update (Important) | |||
| CVE-2023-38497 | high | — | 8.0 | 3y ago | RHSA-2023:4635: rust-toolset:rhel8 security update (Important) | |||
| CVE-2023-35390 | high | — | 8.0 | 3y ago | RHSA-2023:4645: .NET 6.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-40267 | high | — | 8.0 | 3y ago | GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439. | |||
| CVE-2023-33953 | high | — | 8.0 | 3y ago | Excessive Iteration in gRPC | |||
| CVE-2023-38403 | high | — | 8.0 | 3y ago | RHSA-2023:4570: iperf3 security update (Important) | |||
| CVE-2023-1281 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-1829 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-3417 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4055 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4046 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4049 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4056 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4045 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4057 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4047 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4048 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4050 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-1998 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-0458 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3090 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-35788 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) |