Vulnerabilities (CVE)

Filtered by vendor Redhat Subscribe

Filtered by product Enterprise Linux For Power Big Endian

Total 45 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-16881	3 Debian, Redhat, Rsyslog	13 Debian Linux, Enterprise Linux, Enterprise Linux Desktop and 10 more	2022-10-06	5.0 MEDIUM	7.5 HIGH
A denial of service vulnerability was found in rsyslog in the imptcp module. An attacker could send a specially crafted message to the imptcp socket, which would cause rsyslog to crash. Versions before 8.27.0 are vulnerable.
CVE-2006-5170	3 Debian, Fedoraproject, Redhat	8 Debian Linux, Fedora Core, Enterprise Linux and 5 more	2022-02-25	7.5 HIGH	N/A
pam_ldap in nss_ldap on Red Hat Enterprise Linux 4, Fedora Core 3 and earlier, and possibly other distributions does not return an error condition when an LDAP directory server responds with a PasswordPolicyResponse control response, which causes the pam_authenticate function to return a success code even if authentication has failed, as originally reported for xscreensaver.
CVE-2007-6283	4 Centos, Fedoraproject, Oracle and 1 more	9 Centos, Fedora Core, Linux and 6 more	2022-02-25	4.9 MEDIUM	N/A
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.
CVE-2020-25717	5 Canonical, Debian, Fedoraproject and 2 more	25 Ubuntu Linux, Debian Linux, Fedora and 22 more	2022-02-25	8.5 HIGH	8.1 HIGH
A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.
CVE-2016-2124	5 Canonical, Debian, Fedoraproject and 2 more	24 Ubuntu Linux, Debian Linux, Fedora and 21 more	2022-02-25	4.3 MEDIUM	5.9 MEDIUM
A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plaintext password sent over the wire even if Kerberos authentication was required.