Redhat Enterprise Linux High Availability — known CVE vulnerabilities
Every CVE whose affected-product data names Redhat Enterprise Linux High Availability, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-2319 — CVSS 9.8 (critical): It was discovered that an update for PCS package in RHBA-2023:2151 erratum released as part of Red Hat Enterprise Linux 9.2 failed to…
CVE-2015-1867 — CVSS 7.5 (high): Pacemaker before 1.1.13 does not properly evaluate added nodes, which allows remote read-only users to gain privileges via an acl command.
CVE-2016-7797 — CVSS 7.5 (high): Pacemaker before 1.1.15, when using pacemaker remote, might allow remote attackers to cause a denial of service (node disconnection) via an…
CVE-2015-1848 — CVSS 6.8 (medium): The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes it easier for…