Red Hat

650 tracked vulnerabilities.

CVE-2024-6162 HIGH
Undertow 2.3.0.Alpha1-2.3.13.Final - Denial of Service via Concurrent AJP Request Path Decoding
Jun 20, 2024
CVSS 7.5
EPSS 0.02
CVE-2024-5967 LOW
Keycloak LDAP Federation >=25.0.0 <25.0.1 - Authenticated Credential Leak via LDAP Connection URL Change
Jun 18, 2024
CVSS 2.7
EPSS 0.00
CVE-2024-5953 MEDIUM
Red Hat Directory Server - Authenticated Denial of Service via Malformed Password Hash
Jun 18, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-3049 MEDIUM
Booth < 1.1 - Insufficient Verification of Data Authenticity
Jun 06, 2024
CVSS 5.9
EPSS 0.01
CVE-2024-5037 HIGH
Red Hat OpenShift Container Platform 4.12-4.16 - Authentication Bypass via Forged JWT Token
Jun 05, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-4540 HIGH
Keycloak < 24.0.5 - Cleartext Storage of Sensitive Information in OAuth 2.0 PAR KC_RESTART Cookie
Jun 03, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-5564 HIGH
Red Hat Enterprise Linux - Buffer Overflow via Malformed IPv6 Router Advertisement Packet
May 31, 2024
CVSS 8.1
EPSS 0.01
CVE-2024-3657 HIGH
Red Hat Directory Server - Denial of Service via Specially-Crafted LDAP Query
May 28, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-2199 MEDIUM
Red Hat Directory Server - Authenticated Denial of Service via Malformed userPassword Input
May 28, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-5042 MEDIUM
submariner-operator 0.16.0-m0-0.16.4 - Execution with Unnecessary Privileges
May 17, 2024
CVSS 6.6
EPSS 0.00
CVE-2024-4871 MEDIUM
Red Hat Satellite Remote Execution - SSH Host Key Verification Bypass
May 14, 2024
CVSS 6.8
EPSS 0.03
CVE-2024-4840 MEDIUM
OpenStack Platform - Info Disclosure
May 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-4693 MEDIUM
QEMU Virtio PCI Bindings - Use After Free
May 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-3727 HIGH
containers/image < 5.30.1 - Improper Validation of Integrity Check Value
May 14, 2024
CVSS 8.3
EPSS 0.00
CVE-2024-4438 HIGH
Red Hat OpenStack Platform 16.1-18.0 - Uncontrolled Resource Consumption via HTTP/2 Rapid Reset
May 08, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-4437 HIGH
Red Hat OpenStack Platform 16.1-18.0 - Uncontrolled Resource Consumption in etcd Package
May 08, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-4436 HIGH
Red Hat OpenStack Platform 16.1-18.0 - Uncontrolled Resource Consumption
May 08, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-4418 MEDIUM
Red Hat Enterprise Linux 8 - Stack Use-After-Free via virtproxyd Race Condition
May 08, 2024
CVSS 6.2
EPSS 0.01
CVE-2024-4029 MEDIUM
Wildfly - Denial of Service via Unlimited Management Interface Sockets
May 02, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-4369 MEDIUM
Red Hat OpenShift Container Platform 4.14-4.15 - Cleartext Storage of Sensitive Information in Environment Variable
May 01, 2024
CVSS 6.8
EPSS 0.00
CVE-2024-3154 HIGH
cri-o 1.29.0-1.29.3 - Unauthenticated Arbitrary Systemd Property Injection via Pod Annotation
Apr 26, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-3625 HIGH
mirror registry for Red Hat OpenShift - Plaintext Password Storage in Jinja config.yaml
Apr 25, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-3624 HIGH
mirror registry for Red Hat OpenShift - Plaintext Password Storage in config.yaml
Apr 25, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-2905 MEDIUM
Red Hat Enterprise Linux 10 - Incorrect Permission Assignment for /etc/shadow
Apr 25, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-2467 MEDIUM
perl-Crypt-OpenSSL-RSA - Info Disclosure
Apr 25, 2024
CVSS 5.9
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV