CPE-B32D1039-1D5C-4324-A144-C99A840C41F7 Detail

CPE Details

Red Hat Enterprise Linux Server Update Services For SAP Solutions 9.0

Vendor

redhat

Product

enterprise_linux_server_update_services_for_sap_solutions

Version

9.0

Created

2022-12-16
18h18 +00:00

Modified

2022-12-30
16h48 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:9.0:::::::*

Informations

Vendor

redhat

Product

enterprise_linux_server_update_services_for_sap_solutions

Version

9.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-5455	2024-01-10 12h33 +00:00	A Cross-site request forgery vulnerability exists in ipa/session/login_password in all supported versions of IPA. This flaw allows an attacker to trick the user into submitting a request that could perform actions as the user, resulting in a loss of confidentiality and system integrity. During community penetration testing it was found that for certain HTTP end-points FreeIPA does not ensure CSRF protection. Due to implementation details one cannot use this flaw for reflection of a cookie representing already logged-in user. An attacker would always have to go through a new authentication attempt.	6.5	Medium
CVE-2023-3899	2023-08-23 10h49 +00:00	A vulnerability was found in subscription-manager that allows local privilege escalation due to inadequate authorization. The D-Bus interface com.redhat.RHSM1 exposes a significant number of methods to all users that could change the state of the registration. By using the com.redhat.RHSM1.Config.SetAll() method, a low-privileged local user could tamper with the state of the registration, by unregistering the system or by changing the current entitlements. This flaw allows an attacker to set arbitrary configuration directives for /etc/rhsm/rhsm.conf, which can be abused to cause a local privilege escalation to an unconfined root.	7.8	High
CVE-2022-2601	2022-12-13 23h00 +00:00	A buffer overflow was found in grub_font_construct_glyph(). A malicious crafted pf2 font can lead to an overflow when calculating the max_glyph_size value, allocating a smaller than needed buffer for the glyph, this further leads to a buffer overflow and a heap based out-of-bounds write. An attacker may use this vulnerability to circumvent the secure boot mechanism.	8.6	High

Red Hat Enterprise Linux Server Update Services For SAP Solutions 9.0

CPE Details

CPE Name: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:9.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:o:redhat:enterprise_linux_server_update_services_for_sap_solutions:9.0:::::::*