Red Hat

650 tracked vulnerabilities.

CVE-2025-4878 LOW
Red Hat Enterprise Linux 10 - Use-After-Free in privatekey_from_file()
Jul 22, 2025
CVSS 3.6
EPSS 0.00
CVE-2025-7784 MEDIUM
Red Hat build of Keycloak - Privilege Escalation via Fine-Grained Admin Permissions
Jul 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-6395 MEDIUM
GnuTLS - Memory Corruption
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-7365 HIGH
Keycloak - Authenticated Account Takeover via Identity Provider Login Email Verification
Jul 10, 2025
CVSS 7.1
EPSS 0.00
CVE-2025-7425 HIGH
libxml2 < 2.15.2 - Use-After-Free in XSLT Key Function Tree Fragment Handling
Jul 10, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-7424 HIGH
libxslt - Type Confusion via psvi Memory Field Reuse
Jul 10, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-32990 MEDIUM
GnuTLS - Heap-based Buffer Overflow in Certtool Template Parsing
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-32989 MEDIUM
GnuTLS - Heap-Buffer-Overread in Certificate Transparency SCT Extension Parsing
Jul 10, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-32988 MEDIUM
GnuTLS < 3.8.10 - Double Free in Subject Alternative Name Export Logic
Jul 10, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-7345 HIGH
Red Hat Enterprise Linux - Heap Buffer Overflow in gdk-pixbuf JPEG Image Processing
Jul 08, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-5987 HIGH
libssh 0.10.0-0.11.1 - Undefined Behavior via ChaCha20 Cipher Context Initialization
Jul 07, 2025
CVSS 8.1
EPSS 0.01
CVE-2025-5351 MEDIUM
libssh 0.10.0-0.11.2 - Double Free in Key Export Functionality
Jul 04, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-5372 MEDIUM
Libssh <3.0 - Uninitialized Key Buffer
Jul 04, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-49521 HIGH
Ansible Automation Platform - Command Injection
Jun 30, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-49520 HIGH
Red Hat Ansible Automation Platform 2.5 for RHEL 8/9 - Authenticated Command Injection via Git URL Argument Injection
Jun 30, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-6032 HIGH
Podman - Improper Certificate Validation in podman machine init
Jun 24, 2025
CVSS 8.3
EPSS 0.00
CVE-2025-5318 HIGH
Redhat Openshift Container Platform < 0.11.2 - Out-of-Bounds Read
Jun 24, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-6193 MEDIUM
TrustyAI Explainability - Command Injection
Jun 20, 2025
CVSS 5.9
EPSS 0.00
CVE-2025-6019 HIGH
Red Hat Enterprise Linux - Local Privilege Escalation via libblockdev XFS Image Resizing
Jun 19, 2025
CVSS 7.0
EPSS 0.00
CVE-2025-49180 HIGH
X.Org xwayland < 24.1.7 - Integer Overflow in RandR Extension
Jun 17, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-49179 HIGH
X.Org xwayland < 24.1.7 - Integer Overflow in RecordSanityCheckRegisterClients
Jun 17, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-49178 MEDIUM
X.Org xwayland < 24.1.7 - Denial of Service via Request Handling
Jun 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-49177 MEDIUM
xwayland < 24.1.7 - Exposure of Sensitive Information via XFIXES Extension Request Length Validation
Jun 17, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-49176 HIGH
X.Org xwayland < 24.1.7 - Integer Overflow in Big Requests Extension
Jun 17, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-49175 MEDIUM
X.Org xwayland < 24.1.8 - Out-of-bounds Read in Animated Cursor Handling
Jun 17, 2025
CVSS 6.1
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV