CVEs from 2023
Total
6,664
critical
critical 221
high
high 1,562
medium
medium 1,264
low
low 23
% Critical
3.3%
% with KEV
2.4%
% with exploit
2.5%
Top vendors
- redhat 120
- microsoft 76
- f5 43
- cisco 26
- automattic 19
- cbot 12
- brainstormforce 11
- gvectors 10
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- openstack_platform 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- registrationmagic 6
- codeready_linux_builder_eus 6
- cbot_panel 6
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2023-52501 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not attempt to read past "commit" When iterating over the ring buffer while the ring buffer is active, the writer… | |
| CVE-2023-53558 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Avoid pr_info() with spin lock in cblist_init_generic() pr_info() is called with rtp->cbs_gbl_lock spin lock locked. … | |
| CVE-2023-52513 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix connection failure handling In case immediate MPA request processing fails, the newly created endpoint unlinks the … | |
| CVE-2023-52520 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-lmi: Fix reference leak If a duplicate attribute is found using kset_find_obj(), a reference to that attribut… | |
| CVE-2023-53596 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drivers: base: Free devm resources when unregistering a device In the current code, devres_release_all() only gets called if the … | |
| CVE-2023-52634 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix disable_otg_wa logic [Why] When switching to another HDMI mode, we are unnecesarilly disabling/enabling FIFO… | |
| CVE-2023-53597 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: cifs: fix mid leak during reconnection after timeout threshold When the number of responses with status of STATUS_IO_TIMEOUT exce… | |
| CVE-2023-52643 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iio: core: fix memleak in iio_device_register_sysfs When iio_device_register_sysfs_group() fails, we should free iio_dev_opaque->… | |
| CVE-2023-52649 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Avoid reading beyond LUT array When the floor LUT index (drm_fixp2int(lut_index) is the last index of the array the cei… | |
| CVE-2023-52650 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Add missing check for of_find_device_by_node Add check for the return value of of_find_device_by_node() and retur… | |
| CVE-2023-52920 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction… | |
| CVE-2023-54153 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: turn quotas off if mount failed after enabling quotas Yi found during a review of the patch "ext4: don't BUG on inconsisten… | |
| CVE-2023-52658 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" This reverts commit 662404b24a4c4d839839ed25e3097571f5938b… | |
| CVE-2023-48161 | medium | — | 5.5 | 2y ago | Moderate: java-17-openjdk security update | |
| CVE-2023-45733 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-22655 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-39368 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-43490 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-46103 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-38575 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-31356 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-20584 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-52463 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: efivarfs: force RO when remounting if SetVariable is not supported If SetVariable at runtime is not supported by the firmware we … | |
| CVE-2023-52801 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix missing update of domains_itree after splitting iopt_area In iopt_area_split(), if the original iopt_area has filled… | |
| CVE-2023-6349 | medium | — | 5.5 | 2y ago | Moderate: libvpx security update | |
| CVE-2023-37920 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security update | |
| CVE-2023-25433 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-52809 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() fc_lport_ptp_setup() did not check the return value o… | |
| CVE-2023-52458 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: block: add check that partition length needs to be aligned with block size Before calling add partition or resize partition, ther… | |
| CVE-2023-31346 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-45237 | medium | — | 5.5 | 2y ago | Moderate: edk2 security update | |
| CVE-2023-45236 | medium | — | 5.5 | 2y ago | Moderate: edk2 security update | |
| CVE-2023-52667 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fs_any_create_groups When kcalloc() for ft->g succeeds but kvzalloc() for in fails, fs_… | |
| CVE-2023-52626 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context Indirection (*) is of lower precedence than postfi… | |
| CVE-2023-52607 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add kasprintf() returns a pointer to dynamically allocated memory which… | |
| CVE-2023-52598 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: s390/ptrace: handle setting of fpc register correctly If the content of the floating point control (fpc) register of a traced pro… | |
| CVE-2023-39192 | medium | — | 5.5 | 2y ago | A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-… | |
| CVE-2023-43361 | medium | — | 5.5 | 2y ago | Moderate: vorbis-tools security update | |
| CVE-2023-1513 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, caus… | |
| CVE-2023-42755 | medium | — | 5.5 | 2y ago | A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r… | |
| CVE-2023-6240 | medium | — | 5.5 | 2y ago | A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting… | |
| CVE-2023-5090 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct access to host x2apic msrs when the guest resets its apic, potentially leading to a denial of service … | |
| CVE-2023-40569 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-43788 | medium | — | 5.5 | 2y ago | Moderate: motif security update | |
| CVE-2023-6917 | medium | — | 5.5 | 2y ago | Moderate: pcp security update | |
| CVE-2023-5088 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-39356 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-43789 | medium | — | 5.5 | 2y ago | Moderate: motif security update | |
| CVE-2023-47038 | medium | — | 5.5 | 2y ago | Moderate: perl security update | |
| CVE-2023-43787 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |
| CVE-2023-51714 | medium | — | 5.5 | 2y ago | Moderate: qt5-qtbase security update | |
| CVE-2023-40589 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-6683 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-42467 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-3255 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-52323 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security and bug fix update | |
| CVE-2023-40474 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-50186 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-7008 | medium | — | 5.5 | 2y ago | Moderate: systemd security update | |
| CVE-2023-52160 | medium | — | 5.5 | 2y ago | Moderate: wpa_supplicant security update | |
| CVE-2023-31489 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-40186 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-40475 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-40188 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-4692 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |
| CVE-2023-40181 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-40567 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-39351 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-29406 | medium | — | 5.5 | 2y ago | Moderate: podman security, bug fix, and enhancement update | |
| CVE-2023-5215 | medium | — | 5.5 | 2y ago | Moderate: libnbd security update | |
| CVE-2023-39352 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-45290 | medium | — | 5.5 | 2y ago | Moderate: toolbox security update | |
| CVE-2023-5871 | medium | — | 5.5 | 2y ago | Moderate: libnbd security update | |
| CVE-2023-38469 | medium | — | 5.5 | 2y ago | Moderate: avahi security update | |
| CVE-2023-39350 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-38472 | medium | — | 5.5 | 2y ago | Moderate: avahi security update | |
| CVE-2023-41081 | medium | — | 5.5 | 2y ago | Moderate: mod_jk and mod_proxy_cluster security update | |
| CVE-2023-45802 | medium | — | 5.5 | 2y ago | Moderate: mod_http2 security update | |
| CVE-2023-6710 | medium | — | 5.5 | 2y ago | Moderate: mod_jk and mod_proxy_cluster security update | |
| CVE-2023-4875 | medium | — | 5.5 | 2y ago | Moderate: mutt security update | |
| CVE-2023-45287 | medium | — | 5.5 | 2y ago | Moderate: podman security update | |
| CVE-2023-45897 | medium | — | 5.5 | 2y ago | Moderate: exfatprogs security update | |
| CVE-2023-31122 | medium | — | 5.5 | 2y ago | Moderate: httpd security update | |
| CVE-2023-53297 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp conn->chan_lock isn't acquired before l2cap_get_chan_by_scid, … | |
| CVE-2023-1579 | medium | — | 5.5 | 2y ago | Moderate: mingw components security update | |
| CVE-2023-49083 | medium | — | 5.5 | 2y ago | Moderate: python-cryptography security update | |
| CVE-2023-53539 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix incomplete state save in rxe_requester If a send packet is dropped by the IP layer in rxe_requester() the call to r… | |
| CVE-2023-53762 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync Use-after-free can occur in hci_disconnect_all_sync if a connection is de… | |
| CVE-2023-31490 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41358 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41359 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41909 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41360 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-46752 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-46753 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-40476 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-6228 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-3618 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-40745 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-41175 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update |