Red Hat

924 tracked vulnerabilities.

CVE-2024-8768 HIGH
vllm < 0.5.5 - Denial of Service via Empty Prompt
Sep 17, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-7387 CRITICAL
OpenShift Builder - Command Injection via Path Traversal in BuildConfig Secret DestinationDir
Sep 17, 2024
CVSS 9.1
EPSS 0.02
CVE-2024-45496 CRITICAL
OpenShift Controller Manager - Privilege Escalation via Crafted .gitconfig File
Sep 17, 2024
CVSS 9.9
EPSS 0.01
CVE-2024-8775 MEDIUM
ansible-core >=2.17.0b1 <2.17.6 - Sensitive Information Exposure in Log Files via Vault Variable Handling
Sep 14, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-6840 MEDIUM
Ansible Automation Controller - Privilege Escalation
Sep 12, 2024
CVSS 6.6
EPSS 0.00
CVE-2024-8443 LOW
OpenSC - Heap-based Buffer Overflow in OpenPGP Driver via Malicious APDU Responses
Sep 10, 2024
CVSS 2.9
EPSS 0.00
CVE-2024-7341 HIGH
Keycloak - Session Fixation via SAML Adapter
Sep 09, 2024
CVSS 7.1
EPSS 0.01
CVE-2024-8509 HIGH
Red Hat Migration Toolkit for Virtualization 2.6 - Improper Authorization via Bearer Token Validation Bypass
Sep 06, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-8445 MEDIUM
Red Hat Directory Server 11 and 12 - Authenticated Denial of Service via Malformed userPassword Input
Sep 05, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-8418 HIGH
Aardvark-dns - Denial of Service via TCP DNS Query Processing
Sep 04, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-45620 LOW
Redhat Enterprise Linux < 0.26.0 - Buffer Overflow
Sep 03, 2024
CVSS 3.9
EPSS 0.00
CVE-2024-45619 MEDIUM
Redhat Enterprise Linux < 0.26.0 - Buffer Overflow
Sep 03, 2024
CVSS 4.3
EPSS 0.00
CVE-2024-45618 LOW
Redhat Enterprise Linux < 0.26.0 - Use of Uninitialized Resource
Sep 03, 2024
CVSS 3.9
EPSS 0.00
CVE-2024-45617 LOW
Redhat Enterprise Linux < 0.26.0 - Use of Uninitialized Resource
Sep 03, 2024
CVSS 3.9
EPSS 0.00
CVE-2024-45616 LOW
Redhat Enterprise Linux < 0.26.0 - Use of Uninitialized Resource
Sep 03, 2024
CVSS 3.9
EPSS 0.00
CVE-2024-45615 LOW
Redhat Enterprise Linux < 0.26.0 - Use of Uninitialized Resource
Sep 03, 2024
CVSS 3.9
EPSS 0.00
CVE-2024-4629 MEDIUM
Keycloak < 24.0.3 - Brute Force Protection Bypass via Timing Attack
Sep 03, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-5148 HIGH
Gnome-Remote-Desktop - Privilege Escalation
Sep 02, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-6508 HIGH
OpenShift Console - Insufficient Entropy in OAuth2 State Parameter
Aug 21, 2024
CVSS 8.0
EPSS 0.01
CVE-2024-7557 HIGH
Red Hat OpenShift AI - Authentication Bypass and Privilege Escalation via ServiceAccount Token Exposure
Aug 12, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5651 HIGH
Fence Agents Remediation 0.4 for RHEL 8 - Remote Code Execution via SSH/TELNET Path Arguments
Aug 12, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-43168 MEDIUM
Red Hat Enterprise Linux 6-9 - Heap-based Buffer Overflow in Unbound cfg_mark_ports
Aug 12, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-43167 LOW
Red Hat Enterprise Linux 6-9 - Denial of Service via NULL Pointer Dereference in ub_ctx_set_fwd
Aug 12, 2024
CVSS 2.8
EPSS 0.00
CVE-2024-7143 HIGH
Pulp - Insecure Inherited Permissions via AutoAddObjPermsMixin
Aug 07, 2024
CVSS 8.3
EPSS 0.01
CVE-2024-7409 HIGH
Red Hat Enterprise Linux 8 - Denial of Service via QEMU NBD Server Socket Closure
Aug 05, 2024
CVSS 7.5
EPSS 0.01
Products
Red Hat Enterprise Linux 9 543 Red Hat Enterprise Linux 8 541 Red Hat Enterprise Linux 10 461 Red Hat Enterprise Linux 7 452 Red Hat Enterprise Linux 6 412 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45