Red Hat

650 tracked vulnerabilities.

CVE-2023-6717 MEDIUM
Keycloak < 22.0.10 - Stored Cross-Site Scripting via SAML Client Registration
Apr 25, 2024
CVSS 6.0
EPSS 0.00
CVE-2023-6596 HIGH
OpenShift Containers - Privilege Escalation
Apr 25, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-6544 MEDIUM
Keycloak - Unauthorized Dynamic Client Registration via TrustedDomain Regex
Apr 25, 2024
CVSS 5.4
EPSS 0.01
CVE-2023-6484 MEDIUM
Keycloak < 22.0.9 - Log Injection via WebAuthn Authentication Form
Apr 25, 2024
CVSS 5.3
EPSS 0.01
CVE-2023-5675 MEDIUM
Quarkus < 3.2.10.Final - Improper Authorization in JAX-RS Endpoint Method Handling
Apr 25, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-3597 MEDIUM
Keycloak < 22.0.10 - Authentication Bypass via Incorrect Client Step-Up Validation
Apr 25, 2024
CVSS 5.0
EPSS 0.00
CVE-2023-6236 HIGH
Red Hat Enterprise Application Platform 8 - Privilege Escalation
Apr 10, 2024
CVSS 7.3
EPSS 0.00
CVE-2023-5685 HIGH
XNIO < 3.8.14.Final - Denial of Service via NotifierState Stack Overflow
Mar 22, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-50782 HIGH
Python-cryptography - Info Disclosure
Feb 05, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-50781 HIGH
Red Hat Enterprise Linux - Observable Discrepancy in RSA Key Exchange
Feb 05, 2024
CVSS 7.5
EPSS 0.00
CVE-2023-6780 MEDIUM
glibc 2.37-2.38 - Heap-Based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 5.3
EPSS 0.00
CVE-2023-6779 HIGH
glibc 2.37-2.38 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.2
EPSS 0.01
CVE-2023-6246 HIGH NUCLEI
glibc >=2.36 - Heap-based Buffer Overflow in __vsyslog_internal
Jan 31, 2024
CVSS 8.4
EPSS 0.25
CVE-2023-52356 HIGH
libtiff - Heap-based Buffer Overflow via TIFFReadRGBATileExt()
Jan 25, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-52355 HIGH
libtiff < 4.6.0 - Out-of-bounds Write via TIFFRasterScanlineSize64 API
Jan 25, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-6816 CRITICAL
X.Org Server < 21.1.11 and XWayland < 23.2.4 - Out-of-bounds Write via Button Mapping
Jan 18, 2024
CVSS 9.8
EPSS 0.03
CVE-2023-5455 MEDIUM
FreeIPA < 4.6.10 - Cross-Site Request Forgery in Session Login
Jan 10, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-6270 HIGH
Linux Kernel - Use-After-Free in ATA over Ethernet Driver
Jan 04, 2024
CVSS 7.0
EPSS 0.00
CVE-2023-6377 HIGH
xorg-server - Memory Corruption
Dec 13, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-6394 HIGH
Quarkus < 3.6.0 - Missing Authorization via WebSocket GraphQL Request
Dec 09, 2023
CVSS 7.4
EPSS 0.01
CVE-2023-6121 MEDIUM
Red Hat Enterprise Linux - Out-of-bounds Read in NVMe-oF/TCP Subsystem
Nov 16, 2023
CVSS 4.3
EPSS 0.01
CVE-2023-39198 HIGH
Linux Kernel < 6.5 - Use-After-Free in QXL Driver via Race Condition
Nov 09, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-5178 HIGH
Linux Kernel 5.0-5.4.260 - Use-After-Free in NVMe/TCP Subsystem
Nov 01, 2023
CVSS 8.8
EPSS 0.08
CVE-2023-3972 HIGH
insights-client < 3.2.2 - Local Privilege Escalation via Insecure Temporary Directory Permissions
Nov 01, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-4911 HIGH KEVNUCLEI
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Oct 03, 2023
CVSS 7.8
EPSS 0.64
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV