CVEs from 2023
Total
6,664
critical
critical 221
high
high 1,562
medium
medium 1,264
low
low 23
% Critical
3.3%
% with KEV
2.4%
% with exploit
2.5%
Top vendors
- redhat 120
- microsoft 76
- f5 43
- cisco 26
- automattic 19
- cbot 12
- brainstormforce 11
- gvectors 10
Top products
- office 29
- office_long_term_servicing_channel 15
- 365_apps 14
- openstack_platform 6
- codeready_linux_builder_for_ibm_z_systems_eus 6
- registrationmagic 6
- codeready_linux_builder_eus 6
- cbot_panel 6
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2023-54227 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix tags leak when shrink nr_hw_queues Although we don't need to realloc set->tags[] when shrink nr_hw_queues, we need to… | |
| CVE-2023-52831 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: cpu/hotplug: Don't offline the last non-isolated CPU If a system has isolated CPUs via the "isolcpus=" command line parameter, th… | |
| CVE-2023-54299 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typec_altmode_attention Some usb hubs will negotiate DisplayPort Alt mode with the devi… | |
| CVE-2023-54301 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: serial: 8250_bcm7271: fix leak in `brcmuart_probe` Smatch reports: drivers/tty/serial/8250/8250_bcm7271.c:1120 brcmuart_probe() w… | |
| CVE-2023-52814 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix potential null pointer derefernce The amdgpu_ras_get_context may return NULL if device not support ras feature, s… | |
| CVE-2023-52466 | medium | — | 5.5 | 2y ago | RHSA-2024:9315: kernel security update (Moderate) | |
| CVE-2023-52751 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in smb2_query_info_compound() The following UAF was triggered when running fstests generic/072 wi… | |
| CVE-2023-53997 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: thermal: of: fix double-free on unregistration Since commit 3d439b1a2ad3 ("thermal/core: Alloc-copy-free the thermal zone paramet… | |
| CVE-2023-52902 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nommu: fix memory leak in do_mmap() error path The preallocation of the maple tree nodes may leak if the error path to "error_jus… | |
| CVE-2023-52819 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For pptable structs that use flexible array sizes, use flexibl… | |
| CVE-2023-52920 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instruction… | |
| CVE-2023-54153 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: ext4: turn quotas off if mount failed after enabling quotas Yi found during a review of the patch "ext4: don't BUG on inconsisten… | |
| CVE-2023-52658 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency" This reverts commit 662404b24a4c4d839839ed25e3097571f5938b… | |
| CVE-2023-48161 | medium | — | 5.5 | 2y ago | Moderate: java-17-openjdk security update | |
| CVE-2023-43490 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-46103 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-39368 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-38575 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-22655 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-45733 | medium | — | 5.5 | 2y ago | Moderate: microcode_ctl security update | |
| CVE-2023-20584 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-31356 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-52801 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix missing update of domains_itree after splitting iopt_area In iopt_area_split(), if the original iopt_area has filled… | |
| CVE-2023-52463 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: efivarfs: force RO when remounting if SetVariable is not supported If SetVariable at runtime is not supported by the firmware we … | |
| CVE-2023-6349 | medium | — | 5.5 | 2y ago | Moderate: libvpx security update | |
| CVE-2023-37920 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security update | |
| CVE-2023-25433 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-52458 | medium | 5.5 | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: block: add check that partition length needs to be aligned with block size Before calling add partition or resize partition, ther… | |
| CVE-2023-52809 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in fc_lport_ptp_setup() fc_lport_ptp_setup() did not check the return value o… | |
| CVE-2023-31346 | medium | — | 5.5 | 2y ago | Moderate: linux-firmware security update | |
| CVE-2023-45237 | medium | — | 5.5 | 2y ago | Moderate: edk2 security update | |
| CVE-2023-45236 | medium | — | 5.5 | 2y ago | Moderate: edk2 security update | |
| CVE-2023-52667 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a potential double-free in fs_any_create_groups When kcalloc() for ft->g succeeds but kvzalloc() for in fails, fs_… | |
| CVE-2023-52626 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll context Indirection (*) is of lower precedence than postfi… | |
| CVE-2023-52607 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add kasprintf() returns a pointer to dynamically allocated memory which… | |
| CVE-2023-52598 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: s390/ptrace: handle setting of fpc register correctly If the content of the floating point control (fpc) register of a traced pro… | |
| CVE-2023-1513 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. When calling the KVM_GET_DEBUGREGS ioctl, on 32-bit systems, there might be some uninitialized portions of the kvm_debugregs structure that could be copied to userspace, caus… | |
| CVE-2023-43361 | medium | — | 5.5 | 2y ago | Moderate: vorbis-tools security update | |
| CVE-2023-42755 | medium | — | 5.5 | 2y ago | A flaw was found in the IPv4 Resource Reservation Protocol (RSVP) classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the `r… | |
| CVE-2023-39192 | medium | — | 5.5 | 2y ago | A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-… | |
| CVE-2023-6240 | medium | — | 5.5 | 2y ago | A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel. This issue may allow a network attacker to decrypt ciphertexts or forge signatures, limiting… | |
| CVE-2023-5090 | medium | — | 5.5 | 2y ago | A flaw was found in KVM. An improper check in svm_set_x2apic_msr_interception() may allow direct access to host x2apic msrs when the guest resets its apic, potentially leading to a denial of service … | |
| CVE-2023-51714 | medium | — | 5.5 | 2y ago | Moderate: qt5-qtbase security update | |
| CVE-2023-4874 | medium | — | 5.5 | 2y ago | Moderate: mutt security update | |
| CVE-2023-43785 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |
| CVE-2023-4693 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |
| CVE-2023-52323 | medium | — | 5.5 | 2y ago | Moderate: fence-agents security and bug fix update | |
| CVE-2023-3255 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-53513 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbd_ioctl arg without verification. The UBSAN … | |
| CVE-2023-42467 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-6710 | medium | — | 5.5 | 2y ago | Moderate: mod_jk and mod_proxy_cluster security update | |
| CVE-2023-6683 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-53297 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix "bad unlock balance" in l2cap_disconnect_rsp conn->chan_lock isn't acquired before l2cap_get_chan_by_scid, … | |
| CVE-2023-43787 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |
| CVE-2023-4692 | medium | — | 5.5 | 2y ago | Moderate: grub2 security update | |
| CVE-2023-31490 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41358 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41359 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-41909 | medium | — | 5.5 | 2y ago | Moderate: frr security update | |
| CVE-2023-43788 | medium | — | 5.5 | 2y ago | Moderate: motif security update | |
| CVE-2023-6917 | medium | — | 5.5 | 2y ago | Moderate: pcp security update | |
| CVE-2023-43789 | medium | — | 5.5 | 2y ago | Moderate: motif security update | |
| CVE-2023-47038 | medium | — | 5.5 | 2y ago | Moderate: perl security update | |
| CVE-2023-43786 | medium | — | 5.5 | 2y ago | Moderate: libX11 security update | |
| CVE-2023-40474 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-40475 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-38470 | medium | — | 5.5 | 2y ago | Moderate: avahi security update | |
| CVE-2023-50186 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-4875 | medium | — | 5.5 | 2y ago | Moderate: mutt security update | |
| CVE-2023-40476 | medium | — | 5.5 | 2y ago | Moderate: gstreamer1-plugins-bad-free security update | |
| CVE-2023-6228 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-45290 | medium | — | 5.5 | 2y ago | Moderate: toolbox security update | |
| CVE-2023-3618 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-40745 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update | |
| CVE-2023-7008 | medium | — | 5.5 | 2y ago | Moderate: systemd security update | |
| CVE-2023-5215 | medium | — | 5.5 | 2y ago | Moderate: libnbd security update | |
| CVE-2023-45897 | medium | — | 5.5 | 2y ago | Moderate: exfatprogs security update | |
| CVE-2023-5088 | medium | — | 5.5 | 2y ago | Moderate: qemu-kvm security update | |
| CVE-2023-40569 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-39350 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-40589 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-45287 | medium | — | 5.5 | 2y ago | Moderate: podman security update | |
| CVE-2023-39351 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-31122 | medium | — | 5.5 | 2y ago | Moderate: httpd security update | |
| CVE-2023-39353 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-39352 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-38473 | medium | — | 5.5 | 2y ago | Moderate: avahi security update | |
| CVE-2023-38469 | medium | — | 5.5 | 2y ago | Moderate: avahi security update | |
| CVE-2023-52160 | medium | — | 5.5 | 2y ago | Moderate: wpa_supplicant security update | |
| CVE-2023-29406 | medium | — | 5.5 | 2y ago | Moderate: podman security, bug fix, and enhancement update | |
| CVE-2023-53762 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in hci_disconnect_all_sync Use-after-free can occur in hci_disconnect_all_sync if a connection is de… | |
| CVE-2023-53539 | medium | — | 5.5 | 2y ago | In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix incomplete state save in rxe_requester If a send packet is dropped by the IP layer in rxe_requester() the call to r… | |
| CVE-2023-39356 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-40181 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-40567 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-49083 | medium | — | 5.5 | 2y ago | Moderate: python-cryptography security update | |
| CVE-2023-40188 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-5871 | medium | — | 5.5 | 2y ago | Moderate: libnbd security update | |
| CVE-2023-39354 | medium | — | 5.5 | 2y ago | Moderate: freerdp security update | |
| CVE-2023-41175 | medium | — | 5.5 | 2y ago | Moderate: libtiff security update |