Red Hat

650 tracked vulnerabilities.

CVE-2026-0989 LOW
Red Hat Enterprise Linux - Denial of Service via RelaxNG Parser Recursion
Jan 15, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-0976 LOW
Keycloak - Path Filter Bypass via RFC-Compliant Matrix Parameters
Jan 15, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-0716 MEDIUM
Red Hat Enterprise Linux 10 - Memory Corruption in libsoup WebSocket Frame Processing
Jan 13, 2026
CVSS 4.8
EPSS 0.00
CVE-2026-0719 HIGH
Red Hat Enterprise Linux - Stack-based Buffer Overflow in libsoup NTLM Authentication
Jan 08, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-0707 MEDIUM
Keycloak - Authorization Bypass via Non-Standard Bearer Token Parsing
Jan 08, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-66286 MEDIUM
Webkitgtk: authorization bypass through webpage::send-request signal handler
Apr 23, 2026
CVSS 4.7
EPSS 0.00
CVE-2025-13763 MEDIUM
Libopensc: opensc: multiple uses of uninitialized variable
Apr 23, 2026
CVSS 5.7
EPSS 0.00
CVE-2025-14243 MEDIUM
Mirror-registry: openshift mirror registry: user enumeration via authentication error messages
Apr 08, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-58713 MEDIUM
Rhpam: privilege escalation via excessive /etc/passwd permissions
Apr 08, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-57854 MEDIUM
Osus-operator: privilege escalation via excessive /etc/passwd permissions
Apr 08, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-57853 MEDIUM
Web-terminal: privilege escalation via excessive /etc/passwd permissions
Apr 08, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-57851 MEDIUM
Mce: privilege escalation via excessive /etc/passwd permissions
Apr 08, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-57847 MEDIUM
Ansible-automation-platform: privilege escalation via excessive group writable /etc/passwd permissions
Apr 08, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-14821 HIGH
Libssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windows
Apr 07, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-12805 HIGH
Llama-stack-k8s-operator: llama stack service exposed across namespaces due to missing networkpolicy
Mar 26, 2026
CVSS 8.1
EPSS 0.00
CVE-2025-8766 MEDIUM
Noobaa-core: excessive permissions of /etc could lead to escalation of privilege in the noobaa-core container
Mar 13, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-57849 MEDIUM
Fuse: privilege escalation via excessive /etc/passwd permissions
Mar 13, 2026
CVSS 6.4
EPSS 0.00
CVE-2025-12801 MEDIUM
nfs-utils - Privilege Escalation
Mar 04, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-9572 MEDIUM
Foreman 1.22.0-3.16.1 - Incorrect Authorization via GraphQL API
Feb 27, 2026
CVSS 5.0
EPSS 0.00
CVE-2025-13327 MEDIUM
uv - Code Injection
Feb 27, 2026
CVSS 6.3
EPSS 0.00
CVE-2025-14905 HIGH
389-ds-base - Memory Corruption
Feb 23, 2026
CVSS 7.2
EPSS 0.00
CVE-2025-8860 LOW
Red Hat Enterprise Linux 6-9 - Information Disclosure via QEMU uefi-vars Device Buffer Reuse
Feb 18, 2026
CVSS 3.3
EPSS 0.00
CVE-2025-1272 HIGH
Linux Kernel 6.12+ Fedora - Info Disclosure
Feb 18, 2026
CVSS 7.7
EPSS 0.00
CVE-2025-14876 MEDIUM
Red Hat Enterprise Linux 6-9 and OpenShift Container Platform 4 - Denial of Service via virtio-crypto AKCIPHER Path
Feb 18, 2026
CVSS 5.5
EPSS 0.00
CVE-2025-0577 MEDIUM
Red Hat Enterprise Linux - Insufficient Entropy in glibc Randomness Functions
Feb 18, 2026
CVSS 4.8
EPSS 0.00
Products
Red Hat Enterprise Linux 9 370 Red Hat Enterprise Linux 8 363 Red Hat Enterprise Linux 10 309 Red Hat Enterprise Linux 7 286 Red Hat Enterprise Linux 6 279 Red Hat OpenShift Container Platform 4 147 Red Hat Enterprise Linux 9.4 Extended Update Support 104 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 91 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 88 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 83 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 83 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 82 Red Hat Enterprise Linux 8.2 Advanced Update Support 81 Red Hat Enterprise Linux 7 Extended Lifecycle Support 65 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 64 Red Hat Hardened Images 62 Red Hat Enterprise Linux 9.2 Extended Update Support 60 Red Hat Build of Keycloak 59 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat Enterprise Linux 8.8 Extended Update Support 53 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 52 Red Hat JBoss Enterprise Application Platform Expansion Pack 50 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 49 Red Hat Single Sign-On 7 48 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 46 Red Hat build of Keycloak 26.4 41 Red Hat Enterprise Linux 8.4 Telecommunications Update Service 38 Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions 38 Red Hat OpenShift Container Platform 4.14 37 Red Hat OpenShift Container Platform 4.16 37
Quick Filters
Critical CVEs With Exploits In CISA KEV