Red Hat

924 tracked vulnerabilities.

CVE-2024-45781 MEDIUM
Red Hat Enterprise Linux 10 - Heap Out-of-Bounds Write in GRUB2 UFS Symbolic Link Handling
Feb 18, 2025
CVSS 6.7
EPSS 0.00
CVE-2024-45776 MEDIUM
Red Hat Enterprise Linux 10 - Out-of-bounds Write in grub_mofile_open()
Feb 18, 2025
CVSS 6.7
EPSS 0.00
CVE-2024-45775 MEDIUM
Red Hat Enterprise Linux 9 - Denial of Service via NULL Pointer Dereference in grub_extcmd_dispatcher
Feb 18, 2025
CVSS 5.2
EPSS 0.00
CVE-2024-45774 MEDIUM
Red Hat Enterprise Linux 9 - Out-of-bounds Write in GRUB2 JPEG Parser
Feb 18, 2025
CVSS 6.7
EPSS 0.00
CVE-2024-4028 LOW
Keycloak - Stored Cross-Site Scripting via Admin Console Permission Payload
Feb 18, 2025
CVSS 3.8
EPSS 0.00
CVE-2024-12243 MEDIUM
GnuTLS - Denial of Service
Feb 10, 2025
CVSS 5.3
EPSS 0.01
CVE-2024-12133 MEDIUM
libtasn1 - Denial of Service
Feb 10, 2025
CVSS 5.3
EPSS 0.01
CVE-2024-11831 MEDIUM
serialize-javascript >=6.0.0 <6.0.2 - Cross-Site Scripting via Unsanitized JavaScript Object Input
Feb 10, 2025
CVSS 5.4
EPSS 0.01
CVE-2024-13484 HIGH
openshift-gitops-operator-container - Info Disclosure
Jan 28, 2025
CVSS 8.2
EPSS 0.00
CVE-2024-11218 HIGH
buildah >=1.38.0 <1.38.1 - Container Breakout via Race Condition in --jobs=2
Jan 22, 2025
CVSS 8.6
EPSS 0.00
CVE-2024-12084 CRITICAL
rsync - Heap-based Buffer Overflow via Checksum Length Handling
Jan 15, 2025
CVSS 9.8
EPSS 0.72
CVE-2024-11029 MEDIUM
Red Hat Enterprise Linux 9 - Exposure of Sensitive System Information via FreeIPA API Audit
Jan 15, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-12747 MEDIUM
rsync - Privilege Escalation
Jan 14, 2025
CVSS 5.6
EPSS 0.00
CVE-2024-12088 MEDIUM
rsync < 3.3.0 - Path Traversal and Arbitrary File Write via Symbolic Link Verification Bypass
Jan 14, 2025
CVSS 6.5
EPSS 0.05
CVE-2024-12087 MEDIUM
rsync < 3.3.0 - Path Traversal via --inc-recursive Symlink Handling
Jan 14, 2025
CVSS 6.5
EPSS 0.02
CVE-2024-12086 MEDIUM
rsync < 3.3.0 - Arbitrary File Read via Checksum Manipulation
Jan 14, 2025
CVSS 6.1
EPSS 0.02
CVE-2024-12085 HIGH
rsync < 3.3.0 - Information Disclosure via Checksum Length Manipulation
Jan 14, 2025
CVSS 7.5
EPSS 0.09
CVE-2024-11736 MEDIUM
Keycloak < 26.0.8 - Authenticated Sensitive Information Exposure via URL Placeholder Injection
Jan 14, 2025
CVSS 4.9
EPSS 0.01
CVE-2024-11734 MEDIUM
Keycloak < 26.0.8 - Authenticated Denial of Service via Security Header Newline Injection
Jan 14, 2025
CVSS 6.5
EPSS 0.01
CVE-2024-56827 MEDIUM
Red Hat Enterprise Linux 9 - Heap-based Buffer Overflow in opj_decompress
Jan 09, 2025
CVSS 5.6
EPSS 0.00
CVE-2024-56826 MEDIUM
Red Hat Enterprise Linux 9 - Heap-based Buffer Overflow in opj_decompress
Jan 09, 2025
CVSS 5.6
EPSS 0.00
CVE-2024-8447 MEDIUM
Narayana LRA Coordinator < 7.1.0.Final - Denial of Service via Concurrent Cancel and Join Operations
Jan 02, 2025
CVSS 5.9
EPSS 0.01
CVE-2024-45497 HIGH
Red Hat OpenShift Container Platform 4.12-4.18 - Incorrect Permission Assignment for Critical Resource in Build Process
Dec 31, 2024
CVSS 7.6
EPSS 0.01
CVE-2024-12582 HIGH
Service Interconnect 1 for RHEL 9 - Authentication Bypass and Denial of Service via Plaintext Password File
Dec 24, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-11614 HIGH
DPDK Vhost < unknown - Memory Corruption
Dec 18, 2024
CVSS 7.4
EPSS 0.01
Products
Red Hat Enterprise Linux 9 543 Red Hat Enterprise Linux 8 541 Red Hat Enterprise Linux 10 461 Red Hat Enterprise Linux 7 452 Red Hat Enterprise Linux 6 412 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45