Red Hat

650 tracked vulnerabilities.

CVE-2026-3833 MEDIUM
Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison
Apr 30, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-3832 LOW
Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response
Apr 30, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-33845 HIGH
Gnutls: gnutls: denial of service via dtls zero-length fragment
Apr 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-7500 MEDIUM
Org.keycloak.keycloak-services: improper access control on keycloak server when the account account api feature is disabled
Apr 30, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-7163 MEDIUM
Red Hat Multicluster Engine Assisted Installer - Administrative Credential Disclosure
Apr 30, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-7309 MEDIUM
Openshift-controller-manager: openshift container platform: information disclosure via environment variable injection
Apr 28, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-5367 HIGH
Ovn: ovn: information disclosure via crafted dhcpv6 packets
Apr 24, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-5265 MEDIUM
Ovn: ovn: heap over-read in icmp error response generation - security issue
Apr 24, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-6732 MEDIUM
Libxml2: libxml2: denial of service via crafted xsd-validated document
Apr 23, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-2708 LOW
Libsoup: libsoup: http request smuggling via duplicate content-length headers
Apr 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-34003 HIGH
Xorg: xwayland: x.org x server: information exposure and denial of service via out-of-bounds memory access
Apr 23, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-34001 HIGH
X.Org X Server Xwayland - XSYNC Fence Use-After-Free
Apr 23, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-33999 HIGH
Xorg: xwayland: x.org x server: denial of service via integer underflow in xkb compatibility map handling
Apr 23, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6862 MEDIUM
Efivar: efivar: denial of service due to stack overflow in device path node parsing
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-6861 MEDIUM
Emacs: emacs: memory corruption vulnerability when processing svg css
Apr 22, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-6859 HIGH
Instructlab: instructlab: arbitrary code execution due to hardcoded `trust_remote_code=true`
Apr 22, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-6857 HIGH
Camel-infinispan: camel-infinispan: remote code execution via unsafe deserialization
Apr 22, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-6855 HIGH
InstructLab - Path Traversal Arbitrary File Write
Apr 22, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-6848 MEDIUM
Quay: red hat quay: authentication bypass allows privileged actions without valid credentials
Apr 22, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-6846 HIGH
Binutils: binutils: arbitrary code execution via malformed xcoff object file processing
Apr 22, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6845 MEDIUM
Binutils: binutils: denial of service via crafted elf file
Apr 22, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-6844 MEDIUM
Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-6843 MEDIUM
Nano: nano: format string vulnerability leads to denial of service
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-6842 LOW
Nano: nano: local attacker can inject malicious .desktop launcher due to insecure directory permissions
Apr 22, 2026
CVSS 2.5
EPSS 0.00
CVE-2026-6507 HIGH
Dnsmasq: dnsmasq: denial of service due to out-of-bounds write in dhcp bootreply processing
Apr 17, 2026
CVSS 7.5
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV