Red Hat

650 tracked vulnerabilities.

CVE-2026-4324 MEDIUM
Rubygem-katello: katello: denial of service and potential information disclosure via sql injection
Mar 17, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-4271 MEDIUM
Libsoup: libsoup: denial of service via use-after-free in http/2 server
Mar 17, 2026
CVSS 5.3
EPSS 0.01
CVE-2026-3634 LOW
Libsoup: libsoup: http header injection and response splitting via crlf injection in content-type header
Mar 17, 2026
CVSS 3.9
EPSS 0.00
CVE-2026-3633 LOW
Libsoup: libsoup: header and http request injection via crlf injection
Mar 17, 2026
CVSS 3.9
EPSS 0.00
CVE-2026-3632 LOW
Libsoup: libsoup: http smuggling and server-side request forgery via malformed hostnames
Mar 17, 2026
CVSS 3.9
EPSS 0.00
CVE-2026-3442 MEDIUM
Red Hat Enterprise Linux 10 - Buffer Overflow
Mar 16, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-3441 MEDIUM
Binutils: gnu binutils: information disclosure via specially crafted xcoff object file
Mar 16, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-4111 HIGH
Red Hat Enterprise Linux - Denial of Service via RAR5 Archive Decompression Infinite Loop
Mar 13, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4105 MEDIUM
Red Hat Enterprise Linux 10 - Improper Access Control via systemd-machined RegisterMachine D-Bus Method
Mar 13, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-3099 MEDIUM
Red Hat Enterprise Linux - Digest Authentication Nonce Reuse
Mar 12, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-2366 LOW
Red Hat build of Keycloak 26.4 - Authenticated Authorization Bypass in Admin API
Mar 12, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-3429 MEDIUM
Keycloak Account REST API - Privilege Escalation
Mar 11, 2026
CVSS 4.2
EPSS 0.00
CVE-2026-3911 LOW
Keycloak - Authenticated Unauthorized User Attribute Exposure via UserResource Endpoint
Mar 11, 2026
CVSS 2.7
EPSS 0.00
CVE-2026-3009 HIGH
Keycloak < 26.5.5 - Incorrect Authorization via Disabled Identity Provider Bypass
Mar 05, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-0980 HIGH
rubyipmi < 0.13.0 - Authenticated Remote Code Execution via BMC Username Injection
Feb 27, 2026
CVSS 8.3
EPSS 0.00
CVE-2026-28296 MEDIUM
GVfs FTP Backend - Command Injection
Feb 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-28295 MEDIUM
GVfs FTP Backend - Malicious FTP Server Port Scanning
Feb 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-3118 MEDIUM
Red Hat Developer Hub - Authenticated Denial of Service via Orchestrator Plugin GraphQL Query Injection
Feb 25, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-26104 MEDIUM
Red Hat Enterprise Linux - Unauthenticated LUKS Encryption Header Backup via udisks D-Bus Method
Feb 25, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-26103 HIGH
Red Hat Enterprise Linux - Unauthenticated Denial of Service via udisks LUKS Header Restoration
Feb 25, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-2243 MEDIUM
Red Hat Enterprise Linux 6-10 and OpenShift Container Platform 4 - Out-of-bounds Read via VMDK Image
Feb 19, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-2733 LOW
Keycloak - Improper Authorization via Docker v2 Authentication Endpoint
Feb 19, 2026
CVSS 3.8
EPSS 0.00
CVE-2026-0665 MEDIUM
Red Hat Enterprise Linux - Out-of-bounds Write via Xen Physdev Hypercall Interface
Feb 18, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-2443 MEDIUM
Red Hat Enterprise Linux - Out-of-bounds Read via HTTP Range Header Processing
Feb 13, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-26158 HIGH
Red Hat Enterprise Linux 6 - Path Traversal via Malicious Tar Archive Extraction
Feb 11, 2026
CVSS 7.0
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV