Red Hat

919 tracked vulnerabilities.

CVE-2026-2443 MEDIUM
Red Hat Enterprise Linux - Out-of-bounds Read via HTTP Range Header Processing
Feb 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-26158 HIGH
Red Hat Enterprise Linux 6 - Path Traversal via Malicious Tar Archive Extraction
Feb 11, 2026
CVSS 7.0
EPSS 0.00
CVE-2026-26157 HIGH
Red Hat Enterprise Linux 6 - Path Traversal and Arbitrary File Write via BusyBox Archive Extraction
Feb 11, 2026
CVSS 7.0
EPSS 0.01
CVE-2026-1529 HIGH
Keycloak 26.5.0-26.5.2 - Unauthenticated Organization Access via JWT Invitation Token Tampering
Feb 09, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-1486 HIGH
Keycloak 26.5.0-26.5.2 - Unauthenticated Token Issuance via Disabled Identity Provider Bypass
Feb 09, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-1709 CRITICAL
Keylime >=7.12.0 <7.12.2 - Unauthenticated Administrative Operations via TLS Authentication Bypass
Feb 06, 2026
CVSS 9.4
EPSS 0.05
CVE-2026-0598 MEDIUM
Ansible Lightspeed API - Info Disclosure
Feb 06, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-1801 MEDIUM
libsoup - HTTP Request Smuggling Information Disclosure
Feb 03, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-1761 HIGH
Libsoup - Buffer Overflow
Feb 02, 2026
CVSS 8.6
EPSS 0.01
CVE-2026-1760 MEDIUM
SoupServer - HTTP Request Smuggling
Feb 02, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-1757 MEDIUM
Red Hat Enterprise Linux - Denial of Service via xmllint Interactive Shell Memory Leak
Feb 02, 2026
CVSS 6.2
EPSS 0.00
CVE-2026-1518 LOW
Keycloak - Server-Side Request Forgery via CIBA Backchannel Notification Endpoint
Feb 02, 2026
CVSS 2.7
EPSS 0.00
CVE-2026-1531 HIGH
foreman_kubevirt < 0.4.3 - Improper Certificate Validation
Feb 02, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-1530 HIGH
fog-kubevirt < 1.5.1 - Man-in-the-Middle via Disabled Certificate Validation
Feb 02, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-1539 MEDIUM
libsoup - Proxy-Authorization Header Credential Disclosure
Jan 28, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-1536 MEDIUM
Libsoup - HTTP Header Injection
Jan 28, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-1489 MEDIUM
Red Hat Enterprise Linux 6-10 - Out-of-bounds Write in Unicode Case Conversion
Jan 27, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-1485 LOW
Red Hat Enterprise Linux 6-10 - Buffer Underflow in Glib Content Type Parser
Jan 27, 2026
CVSS 2.8
EPSS 0.00
CVE-2026-1484 MEDIUM
Red Hat Enterprise Linux 6-10 - Out-of-bounds Write in GLib Base64 Encoding Routine
Jan 27, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-1467 MEDIUM
Libsoup - CRLF Injection
Jan 27, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-1190 LOW
Keycloak - SAML Response Expiration Bypass via Missing NotOnOrAfter Validation
Jan 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-0810 HIGH
gix-date < 0.12.0 - Invalid UTF-8 Character Generation in TimeBuf::as_str
Jan 26, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-0603 HIGH
Red Hat AMQ Broker 7 - SQL Injection via InlineIdsOrClauseBuilder ID Column
Jan 23, 2026
CVSS 8.3
EPSS 0.01
CVE-2026-0988 LOW
RHEL 6-10 & Hardened Images - DoS via Integer Overflow in g_buffered_input_stream_peek
Jan 21, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-1035 LOW
Keycloak - Refresh Token Reuse Bypass via Non-Atomic Validation in TokenManager
Jan 21, 2026
CVSS 3.1
EPSS 0.00
Products
Red Hat Enterprise Linux 9 539 Red Hat Enterprise Linux 8 537 Red Hat Enterprise Linux 10 456 Red Hat Enterprise Linux 7 448 Red Hat Enterprise Linux 6 408 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45