CVEs from 2023
Total
8,275
critical
critical 222
high
high 1,548
medium
medium 1,277
low
low 23
% Critical
2.7%
% with KEV
2.0%
% with exploit
2.0%
Top vendors
- redhat 120
- microsoft 76
- f5 43
- cisco 26
- automattic 19
- cbot 12
- brainstormforce 11
- gvectors 10
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- openstack_platform 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- registrationmagic 6
- codeready_linux_builder_eus 6
- cbot_panel 6
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2023-46822 | medium | 6.1 | 6.1 | 3y ago | Unauth. Reflected Cross-Site Scripting') vulnerability in Visser Labs Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More plugin <= 2.7.2 versions. | |
| CVE-2023-45630 | medium | 6.1 | 6.1 | 3y ago | Unauth. Stored Cross-Site Scripting (XSS) vulnerability in wpdevart Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 versions. | |
| CVE-2023-4663 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Saphira Saphira Connect allows Reflected XSS. This issue affects Saphira Connect: before 9. | |
| CVE-2023-4676 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Yordam MedasPro allows Reflected XSS. This issue affects MedasPro: before 28. | |
| CVE-2023-40205 | medium | 6.1 | 6.1 | 3y ago | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Pixelgrade PixTypes plugin <= 1.4.15 versions. | |
| CVE-2023-25466 | medium | 6.1 | 6.1 | 3y ago | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Mahlamusa Who Hit The Page – Hit Counter plugin <= 1.4.14.3 versions. | |
| CVE-2023-3652 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Digital Ant E-Commerce Software allows Reflected XSS. This issue affects E-Commerce Software: be… | |
| CVE-2023-36385 | medium | 6.1 | 6.1 | 3y ago | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpxpo PostX – Gutenberg Post Grid Blocks plugin <= 2.9.9 versions. | |
| CVE-2023-2960 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Oliva Expertise Oliva Expertise EKS allows Cross-Site Scripting (XSS). This issue affects Oliva … | |
| CVE-2023-2853 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Softmed SelfPatron allows Reflected XSS. This issue affects SelfPatron : before 2.0. | |
| CVE-2023-1766 | medium | 6.1 | 6.1 | 3y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Akbim Computer Panon allows Reflected XSS. This issue affects Panon: before 1.0.2. | |
| CVE-2023-26001 | medium | 5.9 | 5.9 | 1y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Marchetti Design Next Event Calendar allows Stored XSS. This issue affects Next Event Calendar: f… | |
| CVE-2023-26000 | medium | 5.9 | 5.9 | 1y ago | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in hanhdo205 Bang tinh vay allows Stored XSS. This issue affects Bang tinh vay: from n/a through 1.0… | |
| CVE-2023-6237 | medium | 5.9 | 5.9 | 2y ago | Low: openssl and openssl-fips-provider security update | |
| CVE-2023-4806 | medium | 5.9 | 5.9 | 2y ago | Important: glibc security update | |
| CVE-2023-25965 | medium | 5.9 | 5.9 | 2y ago | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in mbbhatti Upload Resume.This issue affects Upload Resume: from n/a through 1.2.0. | |
| CVE-2023-48795 | medium | 5.9 | 5.9 | 3y ago | The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from… | |
| CVE-2023-40403 | medium | — | 5.5 | 2mo ago | Moderate: libxslt security update | |
| CVE-2023-53034 | medium | — | 5.5 | 3mo ago | Moderate: kernel security update | |
| CVE-2023-54152 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock by moving j1939_sk_errqueue() This commit addresses a deadlock situation that can occur in certain s… | |
| CVE-2023-52941 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions:… | |
| CVE-2023-54318 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add While doing smcr_port_add, there maybe linkg… | |
| CVE-2023-53426 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: xsk: Fix xsk_diag use-after-free error during socket cleanup Fix a use-after-free error that is possible if the xsk_diag interfac… | |
| CVE-2023-54119 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotify_freeing_mark() races with inotify_handle_inode_event() it can happen … | |
| CVE-2023-53781 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcp_write_timer_handler(). With Eric's ref tracker, syzbot finally found a repro for use-after-free in… | |
| CVE-2023-54237 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: net/smc: fix potential panic dues to unprotected smc_llc_srv_add_link() There is a certain chance to trigger the following panic:… | |
| CVE-2023-52355 | medium | — | 5.5 | 7mo ago | An out-of-memory flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFRasterScanlineSize64() API. This flaw allows a remote attacker to cause a denial of servic… | |
| CVE-2023-53494 | medium | — | 5.5 | 7mo ago | Moderate: kernel security update | |
| CVE-2023-53257 | medium | — | 5.5 | 7mo ago | Moderate: kernel-rt security update | |
| CVE-2023-53226 | medium | — | 5.5 | 7mo ago | Moderate: kernel-rt security update | |
| CVE-2023-53386 | medium | — | 5.5 | 7mo ago | Moderate: kernel-rt security update | |
| CVE-2023-53331 | medium | — | 5.5 | 7mo ago | In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a ("pstore/ram: Do not treat empty buffers as valid"), … | |
| CVE-2023-53373 | medium | — | 5.5 | 8mo ago | Moderate: kernel security update | |
| CVE-2023-53305 | medium | — | 5.5 | 8mo ago | Moderate: kernel-rt security update | |
| CVE-2023-53125 | medium | — | 5.5 | 8mo ago | Moderate: kernel security update | |
| CVE-2023-52933 | medium | — | 5.5 | 11mo ago | Moderate: kernel security update | |
| CVE-2023-24824 | medium | — | 5.5 | 1y ago | Moderate: pandoc security update | |
| CVE-2023-54278 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/vmem: split pages when debug pagealloc is enabled Since commit bb1520d581a3 ("s390/mm: start kernel with DAT enabled") the k… | |
| CVE-2023-53555 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: initialize damo_filter->list from damos_new_filter() damos_new_filter() is not initializing the list field of newl… | |
| CVE-2023-53260 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer dereference in ovl_permission() Following process: P1 P2 path_lookupat lin… | |
| CVE-2023-52917 | medium | — | 5.5 | 1y ago | RHSA-2025:6966: kernel security update (Moderate) | |
| CVE-2023-54089 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: add the missing REQ_OP_WRITE for flush bio When doing mkfs.xfs on a pmem device, the following warning was -------… | |
| CVE-2023-53519 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock … | |
| CVE-2023-54230 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: amba: bus: fix refcount leak commit 5de1540b7bc4 ("drivers/amba: create devices from device tree") increases the refcount of of_n… | |
| CVE-2023-53510 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp->cmd ufshcd_queuecommand() may be called two times in a row for a SCSI command before it is… | |
| CVE-2023-53595 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: mcs: Fix NULL pointer dereferences When system is rebooted after creating macsec interface below NULL pointer deref… | |
| CVE-2023-53196 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix potential memory leak Function dwc3_qcom_probe() allocates memory for resource structure which is pointed by… | |
| CVE-2023-53568 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if dev_set_name() fails When dev_set_name() fails, zcdn_create() doesn't free the newly allocated … | |
| CVE-2023-54313 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer dereference in ovl_get_acl_rcu() Following process: P1 P2 path_openat link_… | |
| CVE-2023-52672 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: pipe: wakeup wr_wait after setting max_usage Commit c73be61cede5 ("pipe: Add general notification queue support") a regression wa… | |
| CVE-2023-53989 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both create_mapping_noalloc() and update_mapping_prot() sanity-check their 'virt' parameter,… | |
| CVE-2023-53859 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/idle: mark arch_cpu_idle() noinstr linux-next commit ("cpuidle: tracing: Warn about !rcu_is_watching()") adds a new warning … | |
| CVE-2023-53117 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: fs: prevent out-of-bounds array speculation when closing a file descriptor Google-Bug-Id: 114199369 | |
| CVE-2023-53261 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: coresight: Fix memory leak in acpi_buffer->pointer There are memory leaks reported by kmemleak: ... unreferenced object 0xffff002… | |
| CVE-2023-53654 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Add validation before accessing cgx and lmac with the addition of new MAC blocks like CN10K RPM and CN10KB RPM_USX,… | |
| CVE-2023-53287 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: Put the cdns set active part outside the spin lock The device may be scheduled during the resume process, so this can… | |
| CVE-2023-54117 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: s390/dcssblk: fix kernel crash with list_add corruption Commit fb08a1908cb1 ("dax: simplify the dax_device <-> gendisk associatio… | |
| CVE-2023-53066 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info We have to make sure that the info returned by the helper is va… | |
| CVE-2023-46751 | medium | — | 5.5 | 1y ago | Moderate: ghostscript security update | |
| CVE-2023-54322 | medium | — | 5.5 | 1y ago | In the Linux kernel, the following vulnerability has been resolved: arm64: set __exception_irq_entry with __irq_entry as a default filter_irq_stacks() is supposed to cut entries which are related i… | |
| CVE-2023-6693 | medium | — | 5.5 | 1y ago | A stack based buffer overflow was found in the virtio-net device of QEMU. This issue occurs when flushing TX in the virtio_net_flush_tx function if guest features VIRTIO_NET_F_HASH_REPORT, VIRTIO_F_V… | |
| CVE-2023-52490 | medium | — | 5.5 | 1y ago | Moderate: kernel security update | |
| CVE-2023-41053 | medium | — | 5.5 | 2y ago | Moderate: redis:7 security update | |
| CVE-2023-53470 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ionic: catch failure from devlink_alloc Add a check for NULL on the alloc return. If devlink_alloc() fails and we try to use dev… | |
| CVE-2023-52819 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For pptable structs that use flexible array sizes, use flexibl… | |
| CVE-2023-53173 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: tty: pcn_uart: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it… | |
| CVE-2023-53176 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Reinit port->pm on port specific driver unbind When we unbind a serial port hardware specific 8250 driver, the gene… | |
| CVE-2023-54066 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: gl861: Fix null-ptr-deref in gl861_i2c_master_xfer In gl861_i2c_master_xfer, msg is controlled by user. When m… | |
| CVE-2023-54083 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and… | |
| CVE-2023-54114 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: nsh: Use correct mac_offset to unwind gso skb in nsh_gso_segment() As the call trace shows, skb_panic was caused by wrong sk… | |
| CVE-2023-54146 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Fix double-free of elf header buffer After b3e34a47f989 ("x86/kexec: fix memory leak of elf header buffer"), freei… | |
| CVE-2023-52690 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check to scom_debug_init_one() kasprintf() returns a pointer to dynamically allocated memory … | |
| CVE-2023-52867 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/radeon: possible buffer overflow Buffer 'afmt_status' of size 6 could overflow, since index 'afmt_idx' is checked after acces… | |
| CVE-2023-52676 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: Guard stack limits against 32bit overflow This patch promotes the arithmetic around checking stack bounds to be done in the … | |
| CVE-2023-52674 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put() Ensure the value passed to scarlett2_mixer_ctl_put() is between 0 and S… | |
| CVE-2023-52788 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: i915/perf: Fix NULL deref bugs with drm_dbg() calls When i915 perf interface is not available dereferencing it will lead to NULL … | |
| CVE-2023-52837 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_open Commit 4af5f2e03013 ("nbd: use blk_mq_alloc_disk and blk_cleanup_disk") cleans up disk by blk_cleanup_di… | |
| CVE-2023-54299 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typec_altmode_attention Some usb hubs will negotiate DisplayPort Alt mode with the devi… | |
| CVE-2023-54172 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Disable IBT when hypercall page lacks ENDBR instruction On hardware that supports Indirect Branch Tracking (IBT), Hyp… | |
| CVE-2023-44431 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |
| CVE-2023-52932 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: mm/swapfile: add cond_resched() in get_swap_pages() The softlockup still occurs in get_swap_pages() under memory pressure. 64 CP… | |
| CVE-2023-52520 | medium | — | 5.5 | 2y ago | Moderate: kernel update | |
| CVE-2023-52749 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: spi: Fix null dereference on suspend A race condition exists where a synchronous (noqueue) transfer can be active during a system… | |
| CVE-2023-52833 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: Add date->evt_skb is NULL check fix crash because of null pointers [ 6104.969662] BUG: kernel NULL pointer der… | |
| CVE-2023-54291 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: vduse: fix NULL pointer dereference vduse_vdpa_set_vq_affinity callback can be called with NULL value as cpu_mask when deleting t… | |
| CVE-2023-52621 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: Check rcu_read_lock_trace_held() before calling bpf map helpers These three bpf_map_{lookup,update,delete}_elem() helpers ar… | |
| CVE-2023-52595 | medium | — | 5.5 | 2y ago | Moderate: kernel update | |
| CVE-2023-50230 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |
| CVE-2023-54227 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix tags leak when shrink nr_hw_queues Although we don't need to realloc set->tags[] when shrink nr_hw_queues, we need to… | |
| CVE-2023-50967 | medium | — | 5.5 | 2y ago | Moderate: jose security update | |
| CVE-2023-52594 | medium | — | 5.5 | 2y ago | Moderate: kernel update | |
| CVE-2023-52635 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop resu… | |
| CVE-2023-53068 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb->len Packet length retrieved from descriptor may be larger than the actual socket b… | |
| CVE-2023-53264 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imxrt1050: fix memory leak in imxrt1050_clocks_probe Use devm_of_iomap() instead of of_iomap() to automatically han… | |
| CVE-2023-54118 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: setup GPIO controller later in probe The GPIO controller component of the sc16is7xx driver is setup too early,… | |
| CVE-2023-54244 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: Fix oops when removing custom query handlers When removing custom query handlers, the handler might still be used insid… | |
| CVE-2023-52466 | medium | — | 5.5 | 2y ago | RHSA-2024:9315: kernel security update (Moderate) | |
| CVE-2023-53182 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid undefined behavior: applying zero offset to null pointer ACPICA commit 770653e3ba67c30a629ca7d12e352d83c2541b1e Be… | |
| CVE-2023-51596 | medium | — | 5.5 | 2y ago | Moderate: bluez security update | |
| CVE-2023-27349 | medium | — | 5.5 | 2y ago | Moderate: bluez security update |