Red Hat

650 tracked vulnerabilities.

CVE-2026-0967 MEDIUM
Libssh: libssh: denial of service via inefficient regular expression processing
Mar 26, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-0966 HIGH
Libssh: buffer underflow in ssh_get_hexa() on invalid input
Mar 26, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-0965 LOW
Libssh: libssh: denial of service via improper configuration file handling
Mar 26, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-0964 MEDIUM
Libssh: improper sanitation of paths received from scp servers
Mar 26, 2026
CVSS 6.3
EPSS 0.00
CVE-2026-2436 MEDIUM
Libsoup: libsoup: denial of service via use-after-free in soupserver during tls handshake
Mar 26, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-3190 MEDIUM
Keycloak: keycloak: information disclosure via improper role enforcement in uma 2.0 protection api
Mar 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-3121 MEDIUM
Keycloak: org.keycloak/keycloak-services: keycloak: privilege escalation via manage-clients permission
Mar 26, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4897 MEDIUM
Polkit: polkit: denial of service via unbounded input processing through standard input
Mar 26, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-4887 MEDIUM
Gimp: gimp:memory disclosure and denial of service via specially crafted pcx image
Mar 26, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-1961 HIGH
Forman: foreman: remote code execution via command injection in websocket proxy
Mar 26, 2026
CVSS 8.0
EPSS 0.00
CVE-2026-4874 LOW
Org.keycloak.protocol.oidc.grants: org.keycloak.services.managers: keycloak: server-side request forgery via oidc token endpoint manipulation
Mar 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-4775 HIGH
Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-3260 MEDIUM
Undertow: undertow: denial of service due to premature multipart/form-data parsing in get requests
Mar 24, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-1940 MEDIUM
Gstreamer: incomplete fix of cve-2026-1940
Mar 23, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-4647 MEDIUM
Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library
Mar 23, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-4633 LOW
Keycloak: keycloak: user enumeration via differential error messages
Mar 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-4628 MEDIUM
Keycloak: org.keycloak.authorization: keycloak: unauthorized resource modification due to improper access control
Mar 23, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-23536 HIGH
Feast Feature Server - Unauthenticated Arbitrary File Read
Mar 20, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4426 MEDIUM
Libarchive: libarchive: denial of service via malformed iso file processing
Mar 19, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4424 HIGH
Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing
Mar 19, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-2369 MEDIUM
Libsoup: libsoup: buffer overread due to integer underflow when handling zero-length resources
Mar 19, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4366 MEDIUM
Keycloak-services: blind server-side request forgery (ssrf) via http redirect handling in keycloak
Mar 18, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-2575 MEDIUM
Keycloak: keycloak: denial of service due to excessive samlrequest decompression
Mar 18, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-2603 HIGH
Keycloak: keycloak: unauthorized authentication via disabled saml identity provider
Mar 18, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-2092 HIGH
Keycloak-services: keycloak: unauthorized access via improper validation of encrypted saml assertions
Mar 18, 2026
CVSS 7.7
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV