redhat

5,768 tracked vulnerabilities.

CVE-2018-4877 CRITICAL
Adobe Flash Player < 28.0.0.161 - Use-After-Free in Primetime SDK Media Player QoS
Feb 06, 2018
CVSS 9.8
EPSS 0.09
CVE-2018-6560 HIGH
Flatpak < 0.8.9 and 0.9.x-0.10.x < 0.10.3 - Sandbox Escape via D-Bus Message Whitespace Handling
Feb 02, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-6485 CRITICAL
glibc < 2.26 - Integer Overflow in posix_memalign and memalign Functions
Feb 01, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-1000001 HIGH
glibc < 2.26 - Buffer Underflow and Potential Code Execution via realpath()
Jan 31, 2018
CVSS 7.8
EPSS 0.13
CVE-2018-5750 MEDIUM
Linux kernel <4.14.15 - Info Disclosure
Jan 26, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-1051 HIGH
Resteasy - Deserialization of Untrusted Data via YamlProvider
Jan 25, 2018
CVSS 8.1
EPSS 0.01
CVE-2018-5748 HIGH
libvirt - Denial of Service via Large QEMU Reply
Jan 25, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1048 HIGH
JBoss EAP 7.1.0.GA - Path Traversal and Information Disclosure via AJP Connector
Jan 24, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-1047 MEDIUM
JBoss WildFly Application Server 9.x - Path Traversal via ServletResourceManager
Jan 24, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-1000007 CRITICAL
libcurl 7.1-7.57.0 - Authentication Data Leak via Redirect Header Handling
Jan 24, 2018
CVSS 9.8
EPSS 0.08
CVE-2018-5683 MEDIUM
Qemu < 2.11.1 - Denial of Service via vga_draw_text Memory Address Validation
Jan 23, 2018
CVSS 6.0
EPSS 0.01
CVE-2018-5950 MEDIUM
Mailman < 2.1.26 - Cross-Site Scripting via User-Options URL
Jan 23, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-5968 HIGH
FasterXML jackson-databind <2.8.11, 2.9.x<2.9.3 - RCE
Jan 22, 2018
CVSS 8.1
EPSS 0.07
CVE-2018-2678 MEDIUM
Oracle JDK and JRE - Unauthenticated Partial Denial of Service via JNDI
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2677 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2668 MEDIUM
Oracle MySQL Server < 5.5.58 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2665 MEDIUM
Oracle MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Denial of Service in Server Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2663 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2657 MEDIUM
Oracle Java SE <7u161 - Use After Free
Jan 18, 2018
CVSS 5.3
EPSS 0.08
CVE-2018-2641 MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-2640 MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2639 HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.03
CVE-2018-2638 HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.03
CVE-2018-2637 HIGH
Oracle JDK and JRE - Unauthenticated Data Manipulation and Access via JMX
Jan 18, 2018
CVSS 7.4
EPSS 0.05
CVE-2018-2634 MEDIUM
Oracle JDK 7u161, 8u152, 9.0.1 and Java SE Embedded 8u151 - Unauthenticated Data Access via JGSS
Jan 18, 2018
CVSS 6.8
EPSS 0.05