CVEs from 2023
Total
6,454
critical
critical 221
high
high 1,481
medium
medium 1,383
low
low 30
% Critical
3.4%
% with KEV
2.5%
% with exploit
3.0%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- registrationmagic 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- cbot_panel 6
- codeready_linux_builder_eus 6
- openstack_platform 6
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-53641 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53116 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid potential UAF in nvmet_req_complete() An nvme target ->queue_response() operation implementation may free the reques… | |||
| CVE-2023-54308 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53756 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Fix crash due to uninitialized current_vmcs KVM enables 'Enlightened VMCS' and 'Enlightened MSR Bitmap' when running as… | |||
| CVE-2023-53753 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53100 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: fix WARNING in ext4_update_inline_data Syzbot found the following issue: EXT4-fs (loop0): mounted filesystem 00000000-0000-… | |||
| CVE-2023-53517 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53453 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53036 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-2156 | high | — | 8.0 | 3y ago | A flaw was found in the networking subsystem of the Linux kernel within the handling of the RPL protocol. This issue results from the lack of proper handling of user-supplied data, which can lead to … | |||
| CVE-2023-53038 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpf… | |||
| CVE-2023-53760 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: mcq: Fix &hwq->cq_lock deadlock issue When ufshcd_err_handler() is executed, CQ event interrupt can enter waitin… | |||
| CVE-2023-53625 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3640 | high | — | 8.0 | 3y ago | A possible unauthorized memory access flaw was found in the Linux kernel's cpu_entry_area mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important… | |||
| CVE-2023-3358 | high | — | 8.0 | 3y ago | A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system. | |||
| CVE-2023-33952 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53814 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: PCI: Fix dropping valid root bus resources with .end = zero On r8a7791/koelsch: kmemleak: 1 new suspected memory leaks (see /s… | |||
| CVE-2023-54286 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-33203 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-52707 | high | — | 8.0 | 3y ago | RHSA-2024:5102: kernel-rt security update (Important) | |||
| CVE-2023-53121 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: tcp: tcp_make_synack() can be called from process context tcp_rtx_synack() now could be called in process context as explained in… | |||
| CVE-2023-3972 | high | — | 8.0 | 3y ago | RHSA-2023:6283: insights-client security update (Important) | |||
| CVE-2023-43115 | high | — | 8.0 | 3y ago | In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer par… | |||
| CVE-2023-5730 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5732 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5721 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5724 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5725 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-5728 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-0662 | high | — | 8.0 | 3y ago | RHSA-2023:5927: php:8.0 security update (Important) | |||
| CVE-2023-45143 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-39333 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-38552 | high | — | 8.0 | 3y ago | RHSA-2023:7205: nodejs:20 security update (Important) | |||
| CVE-2023-3341 | high | — | 8.0 | 3y ago | RHSA-2023:5474: bind security update (Important) | |||
| CVE-2023-5157 | high | — | 8.0 | 3y ago | RHSA-2023:5683: mariadb:10.5 security update (Important) | |||
| CVE-2023-44488 | high | — | 8.0 | 3y ago | RHSA-2023:6194: thunderbird security update (Important) | |||
| CVE-2023-36664 | high | — | 8.0 | 3y ago | Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). | |||
| CVE-2023-40217 | high | — | 8.0 | 3y ago | RHSA-2023:5998: python39:3.9 and python39-devel:3.9 security update (Important) | |||
| CVE-2023-5169 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-3600 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5176 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-5171 | high | — | 8.0 | 3y ago | RHSA-2023:5433: firefox security update (Important) | |||
| CVE-2023-32002 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32006 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32559 | high | — | 8.0 | 3y ago | RHSA-2023:5362: nodejs:18 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-41419 | high | — | 8.0 | 3y ago | RHSA-2024:8834: python-gevent security update (Important) | |||
| CVE-2023-20900 | high | — | 8.0 | 3y ago | RHSA-2023:5312: open-vm-tools security update (Important) | |||
| CVE-2023-38802 | high | — | 8.0 | 3y ago | RHSA-2023:5219: frr security and bug fix update (Important) | |||
| CVE-2023-53383 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: irqchip/gicv3: Workaround for NVIDIA erratum T241-FABRIC-4 The T241 platform suffers from the T241-FABRIC-4 erratum which causes … | |||
| CVE-2023-4147 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-3354 | high | — | 8.0 | 3y ago | RHSA-2023:5264: virt:rhel and virt-devel:rhel security and bug fix update (Important) | |||
| CVE-2023-35001 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-3776 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-5129 | high | — | 8.0 | 3y ago | RHSA-2023:5309: libwebp security update (Important) | |||
| CVE-2023-3390 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-53556 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-44466 | high | — | 8.0 | 3y ago | RHSA-2023:5244: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-4004 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-20593 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-53769 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-31248 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-21102 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-1637 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-3610 | high | — | 8.0 | 3y ago | Important: kernel security, bug fix, and enhancement update | |||
| CVE-2023-23908 | high | — | 8.0 | 3y ago | RHEA-2023:4995: microcode_ctl bug fix and enhancement update (Important) | |||
| CVE-2023-4573 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4581 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4051 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4577 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4580 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4575 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4574 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4583 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4578 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4585 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4053 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-4584 | high | — | 8.0 | 3y ago | RHSA-2023:4954: thunderbird security update (Important) | |||
| CVE-2023-32360 | high | — | 8.0 | 3y ago | RHSA-2023:4864: cups security update (Important) | |||
| CVE-2023-3899 | high | — | 8.0 | 3y ago | RHSA-2023:4706: subscription-manager security update (Important) | |||
| CVE-2023-35390 | high | — | 8.0 | 3y ago | RHSA-2023:4645: .NET 6.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-38497 | high | — | 8.0 | 3y ago | RHSA-2023:4635: rust-toolset:rhel8 security update (Important) | |||
| CVE-2023-40267 | high | — | 8.0 | 3y ago | GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from. NOTE: this issue exists because of an incomplete fix for CVE-2022-24439. | |||
| CVE-2023-33953 | high | — | 8.0 | 3y ago | Excessive Iteration in gRPC | |||
| CVE-2023-1829 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-1281 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-38403 | high | — | 8.0 | 3y ago | RHSA-2023:4570: iperf3 security update (Important) | |||
| CVE-2023-3417 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4049 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4056 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4050 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4045 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4046 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4055 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4057 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4047 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-4048 | high | — | 8.0 | 3y ago | RHSA-2023:4497: thunderbird security update (Important) | |||
| CVE-2023-1998 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-35788 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-0458 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-3090 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) |