Red Hat

919 tracked vulnerabilities.

CVE-2025-14777 MEDIUM
Red Hat Build of Keycloak - Admin API Insecure Direct Object Reference
Dec 16, 2025
CVSS 6.0
EPSS 0.00
CVE-2025-11393 HIGH
Runtimes-Inventory-Rhel8-Operator - Privilege Escalation
Dec 15, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-13888 CRITICAL
Red Hat OpenShift GitOps < 1.16.2 - Authenticated Privilege Escalation via ArgoCD Custom Resource Injection
Dec 15, 2025
CVSS 9.1
EPSS 0.01
CVE-2025-14523 HIGH
Red Hat Enterprise Linux - HTTP Request Smuggling via Duplicate Host Header Handling
Dec 11, 2025
CVSS 8.2
EPSS 0.01
CVE-2025-14512 MEDIUM
glib < 2.86.3 - Heap Buffer Overflow and Denial of Service via GIO escape_byte_string() Integer Overflow
Dec 11, 2025
CVSS 6.5
EPSS 0.01
CVE-2025-14087 MEDIUM
GLib < 2.86.3 - Heap Corruption via GVariant Parser Buffer Underflow
Dec 10, 2025
CVSS 5.6
EPSS 0.01
CVE-2025-14082 LOW
Keycloak < 26.5.0 - Unauthenticated Sensitive Role Metadata Exposure via Admin REST API
Dec 10, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-14104 MEDIUM
util-linux < 2.41.3 - Heap Buffer Overread in setpwnam()
Dec 05, 2025
CVSS 6.1
EPSS 0.00
CVE-2025-66287 HIGH
WebKitGTK < 2.50.3 - Denial of Service via Memory Handling Issue
Dec 04, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-14010 MEDIUM
community.general - Sensitive Credential Exposure via Verbose Debug Output
Dec 04, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13947 HIGH
WebKitGTK < 2.50.3 - Information Disclosure via File Drag-and-Drop Origin Validation Error
Dec 03, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-12744 HIGH
Red Hat ABRT - Command Injection via Mount Information
Dec 03, 2025
CVSS 8.8
EPSS 0.01
CVE-2025-57850 MEDIUM
CodeReady Workspaces - Privilege Escalation
Dec 02, 2025
CVSS 6.4
EPSS 0.00
CVE-2025-13601 HIGH
Red Hat CodeReady Linux Builder - Heap-Based Buffer Overflow via g_escape_uri_string()
Nov 26, 2025
CVSS 7.7
EPSS 0.00
CVE-2025-13467 MEDIUM
Keycloak LDAP Federation < 26.4.6 - Authenticated Deserialization of Untrusted Data via LDAP Server Configuration
Nov 25, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13502 HIGH
WebKitGTK < 2.50.2 - Denial of Service via GLib Remote Inspector Server
Nov 25, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-13609 HIGH
Keylime < 7.13.0 - Agent Identity Overwrite via Duplicate UUID Registration
Nov 24, 2025
CVSS 8.2
EPSS 0.00
CVE-2025-61664 MEDIUM
GNU grub2 < 2.14 - Use-After-Free in normal_exit Command
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-61663 MEDIUM
GNU grub2 < 2.14 - Use-After-Free in Normal Command
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-61662 HIGH
GRUB2 < 2.14 - Use-After-Free in gettext Module
Nov 18, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-61661 MEDIUM
GNU grub2 < 2.14 - Denial of Service via USB Device String Conversion
Nov 18, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-54771 MEDIUM
GNU GRUB2 < 2.14 - Use-After-Free in File System Structure Handling
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-54770 MEDIUM
GNU grub2 < 2.14 - Denial of Service via Use-After-Free in Network Module
Nov 18, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-13193 MEDIUM
Red Hat Enterprise Linux - Information Disclosure via Insecure Snapshot Permissions
Nov 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-13033 HIGH
Nodemailer <=7.0.7 - Quoted Recipient Address Email Misdirection
Nov 14, 2025
CVSS 7.5
EPSS 0.01
Products
Red Hat Enterprise Linux 9 539 Red Hat Enterprise Linux 8 537 Red Hat Enterprise Linux 10 456 Red Hat Enterprise Linux 7 448 Red Hat Enterprise Linux 6 408 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45