Red Hat

919 tracked vulnerabilities.

CVE-2025-14905 HIGH
389-ds-base - Memory Corruption
Feb 23, 2026
CVSS 7.2
EPSS 0.01
CVE-2025-8860 LOW
Red Hat Enterprise Linux 6-9 - Information Disclosure via QEMU uefi-vars Device Buffer Reuse
Feb 18, 2026
CVSS 3.3
EPSS 0.00
CVE-2025-1272 HIGH
Linux Kernel 6.12+ Fedora - Info Disclosure
Feb 18, 2026
CVSS 7.7
EPSS 0.00
CVE-2025-14876 MEDIUM
Red Hat Enterprise Linux 6-9 and OpenShift Container Platform 4 - Denial of Service via virtio-crypto AKCIPHER Path
Feb 18, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-0577 MEDIUM
Red Hat Enterprise Linux - Insufficient Entropy in glibc Randomness Functions
Feb 18, 2026
CVSS 4.8
EPSS 0.00
CVE-2025-11537 MEDIUM
Keycloak Quarkus Server < 26.6.0 - Sensitive Header Exposure in Verbose Log Format
Feb 10, 2026
CVSS 5.0
EPSS 0.00
CVE-2025-14778 MEDIUM
Keycloak < 26.2.13 - Incorrect Privilege Assignment in UserManagedPermissionService
Feb 09, 2026
CVSS 5.4
EPSS 0.00
CVE-2025-14831 MEDIUM
GnuTLS - Denial of Service
Feb 09, 2026
CVSS 5.3
EPSS 0.01
CVE-2025-13881 LOW
Keycloak Services 26.5.0-26.5.1 - Unauthorized Sensitive Attribute Disclosure via UnmanagedAttributes Endpoint
Feb 02, 2026
CVSS 2.7
EPSS 0.00
CVE-2025-9820 MEDIUM
GnuTLS - Buffer Overflow
Jan 26, 2026
CVSS 4.0
EPSS 0.00
CVE-2025-9615 LOW
Red Hat Enterprise Linux 6-10 and OpenShift Container Platform 4 - Unauthorized File Access via NetworkManager
Jan 26, 2026
CVSS 3.3
EPSS 0.00
CVE-2025-14969 MEDIUM
hibernate-reactive-core < 4.2.1 - Denial of Service via Premature HTTP Connection Closure
Jan 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2025-14525 MEDIUM
kubevirt - Denial of Service via Excessive Network Interface Reporting
Jan 26, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-14459 HIGH
KubeVirt CDI - Privilege Escalation
Jan 26, 2026
CVSS 8.5
EPSS 0.00
CVE-2025-11065 MEDIUM
github.com/go-viper/mapstructure/v2 - Info Disclosure
Jan 26, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-14083 LOW
Keycloak - Improper Access Control in Admin REST API
Jan 21, 2026
CVSS 2.7
EPSS 0.00
CVE-2025-14559 MEDIUM
Keycloak Services 26.5.0-26.5.1 - Unauthorized Token Issuance via Token Exchange Flow
Jan 21, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-14242 MEDIUM
Red Hat Enterprise Linux vsftpd - Denial of Service via Integer Overflow in STAT Command Parameter Parsing
Jan 14, 2026
CVSS 6.5
EPSS 0.01
CVE-2025-12548 CRITICAL
Eclipse Che che-machine-exec - Unauthenticated Remote Command Execution
Jan 13, 2026
CVSS 9.0
EPSS 0.01
CVE-2025-14025 HIGH
Ansible Automation Platform - Privilege Escalation
Jan 08, 2026
CVSS 8.5
EPSS 0.00
CVE-2025-12543 CRITICAL
Undertow HTTP Server - Malformed Host Header Cache Poisoning
Jan 07, 2026
CVSS 9.6
EPSS 0.01
CVE-2025-2515 HIGH
Eclipse Foundation BlueChi < 1.0.0 - Authenticated Privilege Escalation via Systemd Service Unit File Manipulation
Dec 24, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-11419 HIGH
Keycloak < 26.0.16 - Unauthenticated Denial of Service via TLS 1.2 Client-Initiated Renegotiation
Dec 23, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-14946 MEDIUM
libnbd Crafted URI - SSH Argument Injection Code Execution
Dec 19, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-14443 MEDIUM
OpenShift API Server Image References - Server-Side Request Forgery
Dec 16, 2025
CVSS 6.4
EPSS 0.00
Products
Red Hat Enterprise Linux 9 539 Red Hat Enterprise Linux 8 537 Red Hat Enterprise Linux 10 456 Red Hat Enterprise Linux 7 448 Red Hat Enterprise Linux 6 408 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45