redhat

5,762 tracked vulnerabilities.

CVE-2025-6920 MEDIUM
Red Hat AI Inference Server - Unauthenticated API Access via /invocations Endpoint
Jul 01, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-32463 CRITICAL KEVNUCLEI
Sudo <1.9.17p1 - Privilege Escalation
Jun 30, 2025
CVSS 9.3
EPSS 0.47
CVE-2025-5731 MEDIUM
Redhat Data Grid - Error Information Exposure
Jun 26, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-5318 HIGH
Redhat Openshift Container Platform < 0.11.2 - Out-of-Bounds Read
Jun 24, 2025
CVSS 8.1
EPSS 0.02
CVE-2025-5416 LOW
Keycloak - Authenticated Sensitive Information Exposure via Admin Serverinfo Endpoint
Jun 20, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-6170 LOW
Redhat Jboss Core Services - Stack Buffer Overflow
Jun 16, 2025
CVSS 2.5
EPSS 0.00
CVE-2025-6021 HIGH
libxml2 - Stack-based Buffer Overflow in xmlBuildQName
Jun 12, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-5918 LOW
libarchive < 3.8.0 - Out-of-bounds Read via File Stream Piping
Jun 09, 2025
CVSS 3.9
EPSS 0.00
CVE-2025-5917 LOW
libarchive < 3.8.0 - Out-of-bounds Write via File Name Prefix/Suffix Handling
Jun 09, 2025
CVSS 2.8
EPSS 0.00
CVE-2025-5916 LOW
libarchive < 3.8.0 - Integer Overflow via Malicious WARC Archive
Jun 09, 2025
CVSS 3.9
EPSS 0.00
CVE-2025-5915 MEDIUM
libarchive < 3.8.0 - Heap-based Buffer Overflow via LZSS Decompression
Jun 09, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-5914 HIGH
libarchive < 3.8.0 - Integer Overflow to Double-Free in RAR Data Seeking
Jun 09, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-47711 MEDIUM
nbdkit - Denial of Service via Large Data Block Response
Jun 09, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-35036 HIGH
Hibernate Validator < 6.2.0 - Code Injection via Expression Language Interpolation
Jun 03, 2025
CVSS 7.3
EPSS 0.01
CVE-2025-4598 MEDIUM
systemd-coredump - Privilege Escalation
May 30, 2025
CVSS 4.7
EPSS 0.01
CVE-2025-5198 MEDIUM
Red Hat Advanced Cluster Security - Stored Cross-Site Scripting via Kubernetes Role Name
May 27, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-4478 MEDIUM
FreeRDP 3.0.0-3.15.9 - Denial of Service via Crafted RDP Packet
May 16, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-4374 MEDIUM
Red Hat Quay < 3.14.0 - Incorrect Privilege Assignment via Proxy Cache Repository Creation
May 06, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-3910 MEDIUM
Red Hat build of Keycloak 26.0-26.0.10 and Keycloak Services < 26.2.2 - Authentication Bypass
Apr 29, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-3891 HIGH
Apache HTTP Server - Denial of Service via Empty POST Request with OIDCPreservePost Enabled
Apr 29, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-46400 MEDIUM
fig2dev - Denial of Service via read_arcobject Function
Apr 23, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-46399 MEDIUM
fig2dev - Denial of Service via genge_itp_spline Function
Apr 23, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-46398 MEDIUM
fig2dev - Stack-based Buffer Overflow in read_objects Function
Apr 23, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-46397 HIGH
fig2dev - Buffer Overflow via Bezier Spline Function
Apr 23, 2025
CVSS 7.8
EPSS 0.00
CVE-2025-3155 HIGH
Yelp - Arbitrary Script Execution via Help Document
Apr 03, 2025
CVSS 7.4
EPSS 0.13