Red Hat
919 tracked vulnerabilities.
CVE-2025-14777
MEDIUM
Red Hat Build of Keycloak - Admin API Insecure Direct Object Reference
Dec 16, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-11393
HIGH
Runtimes-Inventory-Rhel8-Operator - Privilege Escalation
Dec 15, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-13888
CRITICAL
Red Hat OpenShift GitOps < 1.16.2 - Authenticated Privilege Escalation via ArgoCD Custom Resource Injection
Dec 15, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-14523
HIGH
Red Hat Enterprise Linux - HTTP Request Smuggling via Duplicate Host Header Handling
Dec 11, 2025
CVSS 8.2
EPSS 0.01
CVE-2025-14512
MEDIUM
glib < 2.86.3 - Heap Buffer Overflow and Denial of Service via GIO escape_byte_string() Integer Overflow
Dec 11, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-14087
MEDIUM
GLib < 2.86.3 - Heap Corruption via GVariant Parser Buffer Underflow
Dec 10, 2025
CVSS 5.6
EPSS 0.01
CVE-2025-14082
LOW
Keycloak < 26.5.0 - Unauthenticated Sensitive Role Metadata Exposure via Admin REST API
Dec 10, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-14104
MEDIUM
util-linux < 2.41.3 - Heap Buffer Overread in setpwnam()
Dec 05, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-66287
HIGH
WebKitGTK < 2.50.3 - Denial of Service via Memory Handling Issue
Dec 04, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-14010
MEDIUM
community.general - Sensitive Credential Exposure via Verbose Debug Output
Dec 04, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13947
HIGH
WebKitGTK < 2.50.3 - Information Disclosure via File Drag-and-Drop Origin Validation Error
Dec 03, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-12744
HIGH
Red Hat ABRT - Command Injection via Mount Information
Dec 03, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-57850
MEDIUM
CodeReady Workspaces - Privilege Escalation
Dec 02, 2025
CVSS 6.4
EPSS 0.00
CVE-2025-13601
HIGH
Red Hat CodeReady Linux Builder - Heap-Based Buffer Overflow via g_escape_uri_string()
Nov 26, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-13467
MEDIUM
Keycloak LDAP Federation < 26.4.6 - Authenticated Deserialization of Untrusted Data via LDAP Server Configuration
Nov 25, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13502
HIGH
WebKitGTK < 2.50.2 - Denial of Service via GLib Remote Inspector Server
Nov 25, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-13609
HIGH
Keylime < 7.13.0 - Agent Identity Overwrite via Duplicate UUID Registration
Nov 24, 2025
CVSS 8.2
EPSS 0.00
CVE-2025-61664
MEDIUM
GNU grub2 < 2.14 - Use-After-Free in normal_exit Command
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-61663
MEDIUM
GNU grub2 < 2.14 - Use-After-Free in Normal Command
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-61662
HIGH
GRUB2 < 2.14 - Use-After-Free in gettext Module
Nov 18, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-61661
MEDIUM
GNU grub2 < 2.14 - Denial of Service via USB Device String Conversion
Nov 18, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-54771
MEDIUM
GNU GRUB2 < 2.14 - Use-After-Free in File System Structure Handling
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-54770
MEDIUM
GNU grub2 < 2.14 - Denial of Service via Use-After-Free in Network Module
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-13193
MEDIUM
Red Hat Enterprise Linux - Information Disclosure via Insecure Snapshot Permissions
Nov 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13033
HIGH
Nodemailer <=7.0.7 - Quoted Recipient Address Email Misdirection
Nov 14, 2025
CVSS 7.5
EPSS 0.01
Products
Red Hat Enterprise Linux 9 539
Red Hat Enterprise Linux 8 537
Red Hat Enterprise Linux 10 456
Red Hat Enterprise Linux 7 448
Red Hat Enterprise Linux 6 408
Red Hat OpenShift Container Platform 4 209
Red Hat In-Vehicle Operating System 1 195
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127
Red Hat Enterprise Linux 9.4 Extended Update Support 116
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95
Red Hat Hardened Images 95
Red Hat Enterprise Linux 7 Extended Lifecycle Support 94
Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93
Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92
Red Hat Enterprise Linux 8.2 Advanced Update Support 89
Red Hat Build of Keycloak 87
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83
Red Hat Enterprise Linux 9.6 Extended Update Support 70
Red Hat Enterprise Linux 10.0 Extended Update Support 68
Red Hat Enterprise Linux 9.2 Extended Update Support 67
Red Hat build of Keycloak 26.4 64
Red Hat Enterprise Linux 8.8 Extended Update Support 60
Red Hat JBoss Enterprise Application Platform 8 58
Red Hat JBoss Enterprise Application Platform Expansion Pack 58
Red Hat Single Sign-On 7 53
Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45
Quick Filters