CVEs from 2023
Total
6,454
critical
critical 221
high
high 1,481
medium
medium 1,383
low
low 30
% Critical
3.4%
% with KEV
2.5%
% with exploit
3.0%
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- registrationmagic 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- cbot_panel 6
- codeready_linux_builder_eus 6
- openstack_platform 6
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-35788 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-37464 | high | — | 8.0 | 3y ago | RHSA-2023:4418: mod_auth_openidc:2.3 security update (Important) | |||
| CVE-2023-28198 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-38595 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-41074 | high | — | 8.0 | 3y ago | RHSA-2023:4202: webkit2gtk3 security update (Important) | |||
| CVE-2023-35074 | high | — | 8.0 | 3y ago | RHSA-2023:4202: webkit2gtk3 security update (Important) | |||
| CVE-2023-38594 | high | — | 8.0 | 3y ago | RHSA-2023:7055: webkit2gtk3 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-2828 | high | — | 8.0 | 3y ago | RHSA-2023:4102: bind security update (Important) | |||
| CVE-2023-37211 | high | — | 8.0 | 3y ago | RHSA-2023:4076: firefox security update (Important) | |||
| CVE-2023-37208 | high | — | 8.0 | 3y ago | RHSA-2023:4076: firefox security update (Important) | |||
| CVE-2023-37201 | high | — | 8.0 | 3y ago | RHSA-2023:4076: firefox security update (Important) | |||
| CVE-2023-37202 | high | — | 8.0 | 3y ago | RHSA-2023:4076: firefox security update (Important) | |||
| CVE-2023-37207 | high | — | 8.0 | 3y ago | RHSA-2023:4076: firefox security update (Important) | |||
| CVE-2023-1428 | high | — | 8.0 | 3y ago | gRPC Reachable Assertion issue | |||
| CVE-2023-32731 | high | — | 8.0 | 3y ago | Connection confusion in gRPC | |||
| CVE-2023-36053 | high | — | 8.0 | 3y ago | In Django 3.2 before 3.2.20, 4 before 4.1.10, and 4.2 before 4.2.3, EmailValidator and URLValidator are subject to a potential ReDoS (regular expression denial of service) attack via a very large num… | |||
| CVE-2023-2124 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-32233 | high | — | 8.0 | 3y ago | RHSA-2023:3351: kpatch-patch security update (Important) | |||
| CVE-2023-2002 | high | — | 8.0 | 3y ago | RHSA-2023:5255: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-2194 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-2235 | high | — | 8.0 | 3y ago | RHSA-2023:4541: kernel-rt security and bug fix update (Important) | |||
| CVE-2023-54325 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32700 | high | — | 8.0 | 3y ago | RHSA-2023:3661: texlive security update (Important) | |||
| CVE-2023-34620 | high | — | 8.0 | 3y ago | hjson stack exhaustion vulnerability | |||
| CVE-2023-34416 | high | — | 8.0 | 3y ago | RHSA-2023:3590: firefox security update (Important) | |||
| CVE-2023-34414 | high | — | 8.0 | 3y ago | RHSA-2023:3590: firefox security update (Important) | |||
| CVE-2023-29337 | high | — | 8.0 | 3y ago | RHSA-2023:3593: .NET 7.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-31124 | high | — | 8.0 | 3y ago | RHSA-2023:4035: nodejs:18 security update (Important) | |||
| CVE-2023-31147 | high | — | 8.0 | 3y ago | RHSA-2023:4035: nodejs:18 security update (Important) | |||
| CVE-2023-29331 | high | — | 8.0 | 3y ago | RHSA-2023:3593: .NET 7.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32032 | high | — | 8.0 | 3y ago | RHSA-2023:3593: .NET 7.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-24936 | high | — | 8.0 | 3y ago | RHSA-2023:3593: .NET 7.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-33128 | high | — | 8.0 | 3y ago | RHSA-2023:3593: .NET 7.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-24329 | high | — | 8.0 | 3y ago | RHSA-2023:3811: python39:3.9 and python39-devel:3.9 security update (Important) | |||
| CVE-2023-32067 | high | — | 8.0 | 3y ago | RHSA-2023:4035: nodejs:18 security update (Important) | |||
| CVE-2023-24805 | high | — | 8.0 | 3y ago | RHSA-2023:3425: cups-filters security update (Important) | |||
| CVE-2023-24532 | high | — | 8.0 | 3y ago | RHSA-2023:3319: go-toolset:rhel8 security update (Important) | |||
| CVE-2023-23946 | high | — | 8.0 | 3y ago | RHSA-2023:3246: git security update (Important) | |||
| CVE-2023-22490 | high | — | 8.0 | 3y ago | RHSA-2023:3246: git security update (Important) | |||
| CVE-2023-25815 | high | — | 8.0 | 3y ago | RHSA-2023:3246: git security update (Important) | |||
| CVE-2023-29007 | high | — | 8.0 | 3y ago | RHSA-2023:3246: git security update (Important) | |||
| CVE-2023-25652 | high | — | 8.0 | 3y ago | RHSA-2023:3246: git security update (Important) | |||
| CVE-2023-1582 | high | — | 8.0 | 3y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32206 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-32207 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-32215 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-2295 | high | — | 8.0 | 3y ago | RHSA-2023:3107: libreswan security update (Important) | |||
| CVE-2023-32212 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-23454 | high | — | 8.0 | 3y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-32205 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-32211 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-32213 | high | — | 8.0 | 3y ago | RHSA-2023:3221: thunderbird security update (Important) | |||
| CVE-2023-53809 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register() When a file descriptor of pppol2tp socket is passed as file des… | |||
| CVE-2023-53029 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Fix the use of GFP_KERNEL in atomic context on rt The commit 4af1b64f80fb ("octeontx2-pf: Fix lmtst ID used in aura… | |||
| CVE-2023-22015 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-2319 | high | — | 8.0 | 3y ago | Important: pcs security and bug fix update | |||
| CVE-2023-53765 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53381 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: NFSD: fix leaked reference count of nfsd4_ssc_umount_item The reference count of nfsd4_ssc_umount_item is not decremented on erro… | |||
| CVE-2023-2513 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53552 | high | — | 8.0 | 3y ago | RHSA-2026:0760: kernel-rt security update (Important) | |||
| CVE-2023-21912 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53020 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tp_tunnel_register() The code in l2tp_tunnel_register() is racy in several ways: 1. It modi… | |||
| CVE-2023-53033 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_payload: incorrect arithmetics when fetching VLAN header bits If the offset + length goes over the ethernet + vlan… | |||
| CVE-2023-21865 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21867 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21863 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53030 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Avoid use of GFP_KERNEL in atomic context Using GFP_KERNEL in preemption disable context, causing below warning whe… | |||
| CVE-2023-21879 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21864 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21881 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53083 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: nfsd: don't replace page in rq_pages if it's a continuation of last page The splice read calls nfsd_splice_actor to put the pages… | |||
| CVE-2023-21871 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21876 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21875 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21874 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21873 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53606 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: nfsd: clean up potential nfsd_file refcount leaks in COPY codepath There are two different flavors of the nfsd4_copy struct. One … | |||
| CVE-2023-0394 | high | — | 8.0 | 3y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21869 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-25363 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-25362 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-23517 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-21868 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21870 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-53634 | high | — | 8.0 | 3y ago | In the Linux kernel, the following vulnerability has been resolved: bpf, arm64: Fixed a BTI error on returning to patched function When BPF_TRAMP_F_CALL_ORIG is set, BPF trampoline uses BLR to jump… | |||
| CVE-2023-21836 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1382 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-1195 | high | — | 8.0 | 3y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-25358 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-21963 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-25361 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-23518 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-21883 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21887 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-21878 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-0590 | high | — | 8.0 | 3y ago | RHSA-2023:7077: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-25360 | high | — | 8.0 | 3y ago | RHSA-2023:2834: webkit2gtk3 security and bug fix update (Important) | |||
| CVE-2023-21877 | high | — | 8.0 | 3y ago | RHSA-2023:3087: mysql:8.0 security, bug fix, and enhancement update (Important) | |||
| CVE-2023-22998 | high | — | 8.0 | 3y ago | RHSA-2023:2951: kernel security, bug fix, and enhancement update (Important) | |||
| CVE-2023-23920 | high | — | 8.0 | 3y ago | RHSA-2023:1743: nodejs:14 security, bug fix, and enhancement update (Important) |