redhat
5,768 tracked vulnerabilities.
CVE-2018-5382
MEDIUM
Bouncy Castle <1.47 - Integrity Compromise
Apr 16, 2018
CVSS 4.4
EPSS 0.00
CVE-2018-10120
HIGH
LibreOffice <5.4.6.1-6.0.2.1 - DoS
Apr 16, 2018
CVSS 7.8
EPSS 0.02
CVE-2018-10119
HIGH
LibreOffice <5.4.5.1-6.0.1.1 - Use After Free
Apr 16, 2018
CVSS 7.8
EPSS 0.02
CVE-2018-1084
HIGH
corosync < 2.4.4 - Integer Overflow in totemcrypto.c
Apr 12, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1079
HIGH
pacemaker_command_line_interface < 0.9.164 - Authenticated Arbitrary File Write via REST /remote/put_file
Apr 12, 2018
CVSS 8.7
EPSS 0.01
CVE-2018-1086
MEDIUM
Pacemaker Command Line Interface - Privilege Escalation via Debug Parameter Bypass
Apr 12, 2018
CVSS 4.3
EPSS 0.02
CVE-2018-1100
HIGH
zsh < 5.4.2 - Stack-Based Buffer Overflow in checkmailpath
Apr 11, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-1270
CRITICAL
Spring Framework < 4.3.16 and 5.0 < 5.0.5 - Remote Code Execution via STOMP over WebSocket
Apr 06, 2018
CVSS 9.8
EPSS 0.77
CVE-2018-1000156
HIGH
GNU Patch 2.7.6 - Remote Code Execution via EDITOR_PROGRAM Invocation
Apr 06, 2018
CVSS 7.8
EPSS 0.06
CVE-2018-1096
MEDIUM
Foreman < 1.16.1 - SQL Injection via Dashboard Controller ID Field
Apr 05, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-1097
HIGH
Foreman < 1.16.1 - Exposure of Compute Resource Credentials via oVirt/RHV Power Management
Apr 04, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-8778
HIGH
Ruby <2.2.10-2.6.0-preview1 - Info Disclosure
Apr 03, 2018
CVSS 7.5
EPSS 0.08
CVE-2018-8777
HIGH
Ruby < 2.2.10, 2.3.x < 2.3.7, 2.4.x < 2.4.4, 2.5.x < 2.5.1, 2.6.0-preview1 - Denial of Service via Crafted HTTP Request
Apr 03, 2018
CVSS 7.5
EPSS 0.05
CVE-2018-6914
HIGH
Ruby Directory Traversal via Dir.mktmpdir Prefix Argument
Apr 03, 2018
CVSS 7.5
EPSS 0.11
CVE-2018-1099
MEDIUM
etcd < 3.3.1 - DNS Rebinding
Apr 03, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-1098
HIGH
etcd < 3.3.1 - Cross-Site Request Forgery
Apr 03, 2018
CVSS 8.8
EPSS 0.01
CVE-2018-4117
MEDIUM
Safari < 11.1 - Same Origin Policy Bypass via Fetch API
Apr 03, 2018
CVSS 6.5
EPSS 0.03
CVE-2018-1094
MEDIUM
Linux Kernel < 4.15.15 - Denial of Service via ext4 Xattr Inode Hash NULL Pointer Dereference
Apr 02, 2018
CVSS 5.5
EPSS 0.02
CVE-2018-7566
HIGH
Linux kernel 4.15 - Buffer Overflow via SNDRV_SEQ_IOCTL_SET_CLIENT_POOL ioctl
Mar 30, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-1064
HIGH
Debian Linux < 4.1.0 - Denial of Service
Mar 28, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1083
HIGH
zsh < 5.4.2-test-1 - Buffer Overflow in Shell Autocomplete
Mar 28, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-1312
CRITICAL
Apache HTTP Server 2.2.0-2.4.29 - Improper Authentication via Nonce Generation
Mar 26, 2018
CVSS 9.8
EPSS 0.16
CVE-2018-1301
MEDIUM
Apache HTTP Server < 2.4.30 - Denial of Service via Crafted HTTP Header
Mar 26, 2018
CVSS 5.9
EPSS 0.16
CVE-2018-1283
MEDIUM
Apache httpd 2.4.0-2.4.29 - Info Disclosure
Mar 26, 2018
CVSS 5.3
EPSS 0.10
CVE-2018-8976
MEDIUM
Exiv2 0.26 - Out-of-bounds Read in JPG Image Processing
Mar 25, 2018
CVSS 6.5
EPSS 0.02
Products
enterprise_linux_desktop 1,928
enterprise_linux_server 1,891
enterprise_linux 1,857
enterprise_linux_workstation 1,845
enterprise_linux_server_aus 1,059
enterprise_linux_eus 784
enterprise_linux_server_tus 768
enterprise_linux_server_eus 622
openshift_container_platform 313
jboss_enterprise_application_platform 242
satellite 232
linux 229
openstack 210
enterprise_linux_hpc_node 146
openshift 146
software_collections 137
virtualization 128
enterprise_linux_for_ibm_z_systems 113
enterprise_linux_for_power_little_endian 107
single_sign-on 107
keycloak 98
enterprise_linux_for_power_little_endian_eus 94
enterprise_linux_for_ibm_z_systems_eus 88
enterprise_linux_workstation_supplementary 86
enterprise_linux_desktop_supplementary 84
enterprise_linux_server_supplementary 84
virtualization_host 84
enterprise_linux_server_supplementary_eus 83
enterprise_linux_hpc_node_eus 81
fedora_core 77
Quick Filters