redhat
5,768 tracked vulnerabilities.
CVE-2018-4877
CRITICAL
Adobe Flash Player < 28.0.0.161 - Use-After-Free in Primetime SDK Media Player QoS
Feb 06, 2018
CVSS 9.8
EPSS 0.09
CVE-2018-6560
HIGH
Flatpak < 0.8.9 and 0.9.x-0.10.x < 0.10.3 - Sandbox Escape via D-Bus Message Whitespace Handling
Feb 02, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-6485
CRITICAL
glibc < 2.26 - Integer Overflow in posix_memalign and memalign Functions
Feb 01, 2018
CVSS 9.8
EPSS 0.05
CVE-2018-1000001
HIGH
glibc < 2.26 - Buffer Underflow and Potential Code Execution via realpath()
Jan 31, 2018
CVSS 7.8
EPSS 0.13
CVE-2018-5750
MEDIUM
Linux kernel <4.14.15 - Info Disclosure
Jan 26, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-1051
HIGH
Resteasy - Deserialization of Untrusted Data via YamlProvider
Jan 25, 2018
CVSS 8.1
EPSS 0.01
CVE-2018-5748
HIGH
libvirt - Denial of Service via Large QEMU Reply
Jan 25, 2018
CVSS 7.5
EPSS 0.03
CVE-2018-1048
HIGH
JBoss EAP 7.1.0.GA - Path Traversal and Information Disclosure via AJP Connector
Jan 24, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-1047
MEDIUM
JBoss WildFly Application Server 9.x - Path Traversal via ServletResourceManager
Jan 24, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-1000007
CRITICAL
libcurl 7.1-7.57.0 - Authentication Data Leak via Redirect Header Handling
Jan 24, 2018
CVSS 9.8
EPSS 0.08
CVE-2018-5683
MEDIUM
Qemu < 2.11.1 - Denial of Service via vga_draw_text Memory Address Validation
Jan 23, 2018
CVSS 6.0
EPSS 0.01
CVE-2018-5950
MEDIUM
Mailman < 2.1.26 - Cross-Site Scripting via User-Options URL
Jan 23, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-5968
HIGH
FasterXML jackson-databind <2.8.11, 2.9.x<2.9.3 - RCE
Jan 22, 2018
CVSS 8.1
EPSS 0.07
CVE-2018-2678
MEDIUM
Oracle JDK and JRE - Unauthenticated Partial Denial of Service via JNDI
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2677
MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2668
MEDIUM
Oracle MySQL Server < 5.5.58 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2665
MEDIUM
Oracle MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Denial of Service in Server Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2663
MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 4.3
EPSS 0.05
CVE-2018-2657
MEDIUM
Oracle Java SE <7u161 - Use After Free
Jan 18, 2018
CVSS 5.3
EPSS 0.08
CVE-2018-2641
MEDIUM
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 6.1
EPSS 0.05
CVE-2018-2640
MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.04
CVE-2018-2639
HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.03
CVE-2018-2638
HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.03
CVE-2018-2637
HIGH
Oracle JDK and JRE - Unauthenticated Data Manipulation and Access via JMX
Jan 18, 2018
CVSS 7.4
EPSS 0.05
CVE-2018-2634
MEDIUM
Oracle JDK 7u161, 8u152, 9.0.1 and Java SE Embedded 8u151 - Unauthenticated Data Access via JGSS
Jan 18, 2018
CVSS 6.8
EPSS 0.05
Products
enterprise_linux_desktop 1,928
enterprise_linux_server 1,891
enterprise_linux 1,857
enterprise_linux_workstation 1,845
enterprise_linux_server_aus 1,059
enterprise_linux_eus 784
enterprise_linux_server_tus 768
enterprise_linux_server_eus 622
openshift_container_platform 313
jboss_enterprise_application_platform 242
satellite 232
linux 229
openstack 210
enterprise_linux_hpc_node 146
openshift 146
software_collections 137
virtualization 128
enterprise_linux_for_ibm_z_systems 113
enterprise_linux_for_power_little_endian 107
single_sign-on 107
keycloak 98
enterprise_linux_for_power_little_endian_eus 94
enterprise_linux_for_ibm_z_systems_eus 88
enterprise_linux_workstation_supplementary 86
enterprise_linux_desktop_supplementary 84
enterprise_linux_server_supplementary 84
virtualization_host 84
enterprise_linux_server_supplementary_eus 83
enterprise_linux_hpc_node_eus 81
fedora_core 77
Quick Filters