VIR Vulnerability Intelligence Relay

CVEs from 2023

6,664 normalized CVEs published or assigned in this year.

Total
6,664
critical
critical 222
high
high 1,548
medium
medium 1,277
low
low 23
% Critical
3.3%
% with KEV
2.4%
% with exploit
2.5%

Top vendors

Top products

  • office 29
  • office_long_term_servicing_channel 15
  • 365_apps 14
  • openstack_platform 6
  • codeready_linux_builder_for_ibm_z_systems_eus 6
  • registrationmagic 6
  • codeready_linux_builder_eus 6
  • cbot_panel 6

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2023-4133 medium 5.5 2y ago A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work … redhatrockylinuxsusedebian+1
CVE-2023-5380 medium 5.5 2y ago Moderate: xorg-x11-server security update redhatsusedebian
CVE-2023-39351 medium 5.5 2y ago Moderate: freerdp security update redhatdebiansuse
CVE-2023-53762 medium 5.5 2y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync Use-after-free can occur in hci_disconnect_all_sync if a connection is de… rockylinuxredhatsusedebian
CVE-2023-52578 medium 5.5 2y ago In the Linux kernel, the following vulnerability has been resolved: net: bridge: use DEV_STATS_INC() syzbot/KCSAN reported data-races in br_handle_frame_finish() [1] This function can run from mult… redhatrockylinuxsusedebian+1
CVE-2023-3255 medium 5.5 2y ago Moderate: qemu-kvm security update redhatrockylinuxsusedebian
CVE-2023-53513 medium 5.5 2y ago In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbd_ioctl arg without verification. The UBSAN … rockylinuxredhatsusedebian
CVE-2023-39352 medium 5.5 2y ago Moderate: freerdp security update redhatdebiansuse
CVE-2023-51780 medium 5.5 2y ago An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition. redhatrockylinuxsusedebian+1
CVE-2023-45287 medium 5.5 2y ago Moderate: runc security update redhatdebiangolang
CVE-2023-24023 medium 5.5 2y ago Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key lengt… redhatrockylinuxsusedebian
CVE-2023-52574 medium 5.5 2y ago In the Linux kernel, the following vulnerability has been resolved: team: fix null-ptr-deref when team device type is changed Get a null-ptr-deref bug as follows with reproducer [1]. BUG: kernel N… redhatrockylinuxsusedebian+1
CVE-2023-52144 medium 5.5 5.5 2y ago Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in RexTheme Product Feed Manager.This issue affects Product Feed Manager: from n/a through 7.3.15.
CVE-2023-29483 medium 5.5 2y ago Moderate: python-dns security update redhatdebiansuserockylinux+1
CVE-2023-50374 medium 5.5 5.5 2y ago Server-Side Request Forgery (SSRF) vulnerability in NiteoThemes CMP – Coming Soon & Maintenance.This issue affects CMP – Coming Soon & Maintenance: from n/a through 4.1.10.
CVE-2023-52425 medium 5.5 2y ago libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for which multiple buffer fills are needed. redhatrockylinuxdebiansuse
CVE-2023-4244 medium 5.5 2y ago A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Due to a race condition between nf_tables netlink control … redhatrockylinuxsusedebian+1
CVE-2023-22032 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22064 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22084 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxsusedebian+1
CVE-2023-22054 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22008 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22103 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21982 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21933 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22097 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22092 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21919 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22056 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22114 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22115 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21911 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22066 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22058 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21935 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22038 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22005 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22046 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21962 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-21980 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21966 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-21955 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-21953 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-22113 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22007 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22057 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22048 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22059 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22068 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22104 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22112 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21929 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22053 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-39326 medium 5.5 2y ago Moderate: toolbox security update redhatsusedebiangolang
CVE-2023-22070 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22078 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-21947 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-21946 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-21945 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22065 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22079 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-45285 medium 5.5 2y ago Moderate: golang security update redhatsusedebiangolang
CVE-2023-21940 medium 5.5 2y ago Moderate: mysql:8.0 security update redhatrockylinuxdebian
CVE-2023-21977 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-21920 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-21976 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-45539 medium 5.5 2y ago Moderate: haproxy security update redhatrockylinuxsusedebian
CVE-2023-22111 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-22033 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxsusedebian+1
CVE-2023-21972 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebian
CVE-2023-22110 medium 5.5 2y ago Moderate: mysql security update redhatrockylinuxdebianalmalinux
CVE-2023-40225 medium 5.5 2y ago Moderate: haproxy security update redhatsusedebian
CVE-2023-5992 medium 5.5 2y ago Moderate: opensc security update redhatrockylinuxsusedebian
CVE-2023-28486 medium 5.5 2y ago Moderate: sudo security update redhatsusedebian
CVE-2023-42465 medium 5.5 2y ago Moderate: sudo security update redhatsusedebian
CVE-2023-28487 medium 5.5 2y ago Moderate: sudo security update redhatsusedebian
CVE-2023-6135 medium 5.5 2y ago Moderate: nss security update redhatrockylinuxdebian
CVE-2023-6816 medium 5.5 2y ago Moderate: xorg-x11-server security update redhatrockylinuxsusedebian
CVE-2023-5981 medium 5.5 2y ago Moderate: gnutls security update redhatrockylinuxdebiansuse
CVE-2023-47234 medium 5.5 2y ago Moderate: frr security update redhatrockylinuxdebiansuse
CVE-2023-38406 medium 5.5 2y ago Moderate: frr security update redhatrockylinuxdebiansuse
CVE-2023-45803 medium 5.5 2y ago Moderate: python-urllib3 security update redhatrockylinuxsusedebian+1
CVE-2023-7104 medium 5.5 2y ago Moderate: sqlite security update redhatrockylinuxsusedebian
CVE-2023-4001 medium 5.5 2y ago Moderate: grub2 security update redhatsusedebian
CVE-2023-41080 medium 5.5 2y ago Apache Tomcat Open Redirect vulnerability redhatsusedebianjava
CVE-2023-42794 medium 5.5 2y ago Apache Tomcat Incomplete Cleanup vulnerability redhatsusedebianjava
CVE-2023-47235 medium 5.5 2y ago Moderate: frr security update redhatrockylinuxdebiansuse
CVE-2023-38407 medium 5.5 2y ago Moderate: frr security update redhatrockylinuxdebiansuse
CVE-2023-42795 medium 5.5 2y ago Apache Tomcat Incomplete Cleanup vulnerability redhatsusedebianjava
CVE-2023-38409 medium 5.5 2y ago An issue was discovered in set_con2fb_map in drivers/video/fbdev/core/fbcon.c in the Linux kernel before 6.2.12. Because an assignment occurs only for the first vc, the fbcon_registered_fb and fbcon_… redhatrockylinuxsusedebian
CVE-2023-45648 medium 5.5 2y ago Apache Tomcat Improper Input Validation vulnerability redhatsusedebianjava
CVE-2023-5455 medium 5.5 2y ago Moderate: idm:DL1 security update redhatrockylinuxdebian
CVE-2023-5367 medium 5.5 2y ago Moderate: xorg-x11-server-Xwayland security update redhatsusedebian
CVE-2023-6478 medium 5.5 2y ago Moderate: xorg-x11-server security update redhatsusedebian
CVE-2023-6377 medium 5.5 2y ago Moderate: xorg-x11-server security update redhatsusedebian
CVE-2023-4535 medium 5.5 3y ago Moderate: opensc security update redhatsusedebian
CVE-2023-40661 medium 5.5 3y ago Moderate: opensc security update redhatsusedebian
CVE-2023-40660 medium 5.5 3y ago Moderate: opensc security update redhatsusedebian
CVE-2023-51384 medium 5.5 5.5 3y ago In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these const… susedebian
CVE-2023-36009 medium 5.5 5.5 3y ago Microsoft Word Information Disclosure Vulnerability windows