Redhat Enterprise_linux_workstation

826 CVEs affecting Redhat Enterprise_linux_workstation. Latest disclosed: 2019-11-14. Critical: 76, High: 223.

Top CVEs affecting Redhat Enterprise_linux_workstation
CVESeverityScorePublishedSummary
CVE-2017-3114Critical9.82017-12-09An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is p…
CVE-2017-3112Critical9.82017-12-09An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is p…
CVE-2017-11225Critical9.82017-12-09An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Prime…
CVE-2017-11215Critical9.82017-12-09An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the Prime…
CVE-2017-11213Critical9.82017-12-09An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is p…
CVE-2017-11282Critical9.82017-12-01Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. T…
CVE-2017-11281Critical9.82017-12-01Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execu…
CVE-2017-14746Critical9.82017-11-27Use-after-free vulnerability in Samba 4.x before 4.7.3 allows remote attackers to execute arbitrary code via a crafted SMB1 request.
CVE-2017-0903Critical9.82017-10-11RubyGems versions between 2.0.0 and 2.6.13 are vulnerable to a possible remote code execution vulnerability. YAML deserialization of gem specifications can byp…
CVE-2017-1000116Critical9.82017-10-05Mercurial prior to 4.3 did not adequately sanitize hostnames passed to ssh, leading to possible shell-injection attacks.
CVE-2017-14491Critical9.82017-10-04Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS resp…
CVE-2017-14493Critical9.82017-10-03Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6…
CVE-2017-14492Critical9.82017-10-03Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 rou…
CVE-2017-0899Critical9.82017-08-31RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specifica…
CVE-2017-14064Critical9.82017-08-31Ruby through 2.2.7, 2.3.x through 2.3.4, and 2.4.x through 2.4.1 can expose arbitrary memory during a JSON.generate call. The issues lies in using strdup in ex…
CVE-2017-3167Critical9.82017-06-20In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may l…
CVE-2016-7050Critical9.82017-06-08SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Linux Server 7, and Red Hat Ent…
CVE-2016-5405Critical9.82017-06-08389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through…
CVE-2016-9843Critical9.82017-05-23The crc32_big function in crc32.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact via vectors involving big-endian CRC calcula…
CVE-2016-9841Critical9.82017-05-23inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic.