Red Hat

650 tracked vulnerabilities.

CVE-2025-26595 HIGH
TigerVNC - Stack-based Buffer Overflow in XkbVModMaskText
Feb 25, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-26594 HIGH
Tigervnc < 21.1.16 - Use After Free
Feb 25, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-0690 MEDIUM
Red Hat Enterprise Linux 9 - Out-of-bounds Write via Read Command Input Buffer Overflow
Feb 24, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-0677 MEDIUM
Red Hat Enterprise Linux 10 - Out-of-bounds Write in GRUB2 UFS Symlink Handling
Feb 19, 2025
CVSS 6.4
EPSS 0.00
CVE-2025-0624 HIGH
Red Hat Enterprise Linux 7 Extended Lifecycle Support - Out-of-bounds Write in grub2 Network Boot Configuration
Feb 19, 2025
CVSS 7.6
EPSS 0.01
CVE-2025-1118 MEDIUM
Red Hat Enterprise Linux 10 - Unauthenticated Trust Boundary Violation via GRUB2 Dump Command
Feb 19, 2025
CVSS 4.4
EPSS 0.00
CVE-2025-0622 MEDIUM
Red Hat Enterprise Linux 10 - Use-After-Free in GRUB2 Module Hook Handling
Feb 18, 2025
CVSS 6.4
EPSS 0.00
CVE-2025-26465 MEDIUM
OpenSSH 6.9-9.7 - Machine-in-the-Middle Attack via VerifyHostKeyDNS Error Handling
Feb 18, 2025
CVSS 6.8
EPSS 0.65
CVE-2025-1391 MEDIUM
Keycloak Services 26.1.0-26.1.2 - Improper Access Control via Organization Domain Pattern Matching
Feb 17, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-1247 HIGH
Quarkus REST 3.16.0.CR1-3.18.2 - Exposure of Data Element to Wrong Session via Field Injection
Feb 13, 2025
CVSS 8.3
EPSS 0.00
CVE-2025-1244 HIGH
Emacs - Unauthenticated Remote Code Execution via HTTP URL Redirect
Feb 12, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-23367 MEDIUM
Red Hat JBoss Enterprise Application Platform 7.4 - Improper Access Control in Suspend and Resume Handlers
Jan 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-0754 MEDIUM
OpenShift Service Mesh 2.6.3-2.5.6 - Log Injection
Jan 28, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-0750 MEDIUM
CRI-O - Path Traversal in Log Management Functions
Jan 28, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-0736 MEDIUM
Infinispan - Sensitive Information Exposure in JGroups JDBC_PING Logging
Jan 28, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-0650 HIGH
Open Virtual Network - Crafted UDP Packet Egress ACL Bypass
Jan 23, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-0604 MEDIUM
Keycloak LDAP Federation >=26.1.0 <26.1.3 - Authentication Bypass via Password Reset
Jan 22, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-23366 MEDIUM
HAL Management Console < 3.7.7 - Authenticated Stored Cross-Site Scripting
Jan 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-0306 HIGH
Red Hat Enterprise Linux - Covert Timing Channel via Marvin Attack
Jan 09, 2025
CVSS 7.4
EPSS 0.00
CVE-2024-4027 HIGH
undertow-core < 2.3.21.Final - Unauthenticated Denial of Service via Large Parameter Names
Jan 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2024-3884 HIGH
Undertow < 2.3.21.Final - Denial of Service via Form Data Parsing
Dec 03, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-12125 HIGH
3scale Developer Portal - Info Disclosure
Nov 06, 2025
CVSS 7.5
EPSS 0.00
CVE-2024-10306 MEDIUM
mod_proxy_cluster - Info Disclosure
Apr 23, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-6875 MEDIUM
Red Hat Data Grid - Buffer Overflow
Mar 28, 2025
CVSS 6.5
EPSS 0.00
CVE-2024-7631 MEDIUM
OpenShift Console - Authenticated Path Traversal via Locales Endpoint Parameters
Mar 19, 2025
CVSS 4.3
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV