Red Hat

650 tracked vulnerabilities.

CVE-2024-1726 MEDIUM
Quarkus RESTEasy Reactive 3.8.0.CR1-3.8.0 - Denial of Service via JAX-RS Endpoint Serialization
Apr 25, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-1657 HIGH
Red Hat Ansible Automation Platform 2.4 for RHEL 8/9 - Cleartext Transmission of Sensitive Information via WebSocket
Apr 25, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-1139 HIGH
OpenShift cluster-monitoring-operator - Exposure of Sensitive Information via Pod Manifest
Apr 25, 2024
CVSS 7.7
EPSS 0.00
CVE-2024-0874 MEDIUM
CoreDNS < 1.11.2 - Use of Cache Containing Sensitive Information
Apr 25, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-2419 HIGH
Keycloak < 22.0.10 - Open Redirect via redirect_uri Validation Bypass
Apr 17, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-1249 HIGH
Keycloak < 22.0.10 - Unauthenticated Denial of Service via OIDC checkLoginIframe Origin Validation Error
Apr 17, 2024
CVSS 7.4
EPSS 0.00
CVE-2024-1132 HIGH
Keycloak >=21.1.0 <22.0.10 - Open Redirect via Wildcard Valid Redirect URIs
Apr 17, 2024
CVSS 8.1
EPSS 0.00
CVE-2024-1481 MEDIUM
Red Hat Enterprise Linux 8 - Denial of Service via Crafted HTTP Request Parameters
Apr 10, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-3446 HIGH
Red Hat Enterprise Linux 8 - Double Free in QEMU Virtio Devices
Apr 09, 2024
CVSS 8.2
EPSS 0.00
CVE-2024-1233 HIGH
WildFly Elytron Realm Token - Server-Side Request Forgery via JwtValidator.resolvePublicKey
Apr 09, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-31083 HIGH
Red Hat Enterprise Linux - Use-After-Free in ProcRenderAddGlyphs
Apr 05, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-3296 MEDIUM
Red Hat Enterprise Linux 8 and 9 - Observable Timing Discrepancy in rust-openssl PKCS#1v1.5 RSA Padding
Apr 04, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-31082 HIGH
Red Hat Enterprise Linux 6-10 - Heap-Based Buffer Over-read in ProcAppleDRICreatePixmap
Apr 04, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-31081 HIGH
Red Hat Enterprise Linux - Heap-Based Buffer Over-read in X.org Server ProcXIPassiveGrabDevice
Apr 04, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-31080 HIGH
Red Hat Enterprise Linux X.org Server - Heap-Based Buffer Over-read in ProcXIGetSelectedEvents
Apr 04, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-2700 HIGH
Quarkus Core 3.9.0.CR1-3.9.2 - Cleartext Storage of Sensitive Information in Environment Variables
Apr 04, 2024
CVSS 7.0
EPSS 0.00
CVE-2024-31420 MEDIUM
KubeVirt - Denial of Service via DownwardMetrics vm-dump-metrics Calls
Apr 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-31419 MEDIUM
OpenShift Virtualization - Info Disclosure
Apr 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-1300 MEDIUM
Io.vertx Vertx-core < 4.4.8 - Memory Leak
Apr 02, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-3019 HIGH
PCP pmproxy >=4.3.4 - Remote Command Execution via Exposed Redis Backend
Mar 28, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-2947 HIGH
Cockpit <270 - Command Injection
Mar 28, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-1023 MEDIUM
Io.vertx Vertx-core < 4.5.2 - Memory Leak
Mar 27, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-2494 MEDIUM
Red Hat Enterprise Linux 6, 7, 8, 9 - Denial of Service via Negative Length in RPC Library Deserialization
Mar 21, 2024
CVSS 6.2
EPSS 0.00
CVE-2024-28834 MEDIUM
GnuTLS - Timing Side-Channel
Mar 21, 2024
CVSS 5.3
EPSS 0.02
CVE-2024-1394 HIGH
Golang-FIPS OpenSSL RSA - Memory Leak in Encryption/Decryption via Unfreed Context Objects
Mar 21, 2024
CVSS 7.5
EPSS 0.01
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV