redhat

5,618 tracked vulnerabilities.

CVE-2023-6918 LOW
libssh 0.9.0-0.9.8 - Denial of Service via Unchecked MD Return Values
Dec 19, 2023
CVSS 3.7
EPSS 0.00
CVE-2023-6927 MEDIUM
Keycloak < 23.0.4 - Open Redirect via JARM Response Mode Form Post JWT
Dec 18, 2023
CVSS 4.6
EPSS 0.01
CVE-2023-48795 MEDIUM NUCLEI
OpenSSH <9.6 - Open Redirect
Dec 18, 2023
CVSS 5.9
EPSS 0.53
CVE-2023-5384 HIGH
Redhat Data Grid < 8.4.6 - Cleartext Storage
Dec 18, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-5236 MEDIUM
Redhat Data Grid < 8.4.4 - Denial of Service
Dec 18, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-5115 MEDIUM
Ansible Automation Platform - Path Traversal via Malicious Role Symlink
Dec 18, 2023
CVSS 6.3
EPSS 0.01
CVE-2023-5056 MEDIUM
Red Hat Service Interconnect - Authenticated Information Disclosure via Skupper Operator
Dec 18, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-4320 HIGH
Red Hat Satellite < 6.13 - Insufficient Session Expiration via Personal Access Token Arithmetic Overflow
Dec 18, 2023
CVSS 7.6
EPSS 0.00
CVE-2023-47038 HIGH
perl 5.30.0-5.38.0 - Heap-based Buffer Overflow via Crafted Regular Expression
Dec 18, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-3629 MEDIUM
Infinispan - Privilege Escalation
Dec 18, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-3628 MEDIUM
Infinispan - Info Disclosure
Dec 18, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-6134 MEDIUM
Keycloak - Cross-Site Scripting
Dec 14, 2023
CVSS 4.6
EPSS 0.02
CVE-2023-6563 HIGH
Keycloak < 21.0.0 - Unconstrained Memory Consumption via Admin UI Consents Tab
Dec 14, 2023
CVSS 7.7
EPSS 0.01
CVE-2023-6478 HIGH
x.org X Server < 21.1.10 and XWayland < 23.2.3 - Integer Overflow via RRChangeProviderProperty or RRChangeOutputProperty
Dec 13, 2023
CVSS 7.6
EPSS 0.01
CVE-2023-6377 HIGH
xorg-server - Memory Corruption
Dec 13, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-6710 MEDIUM
mod_proxy_cluster - Stored Cross-Site Scripting via Alias Parameter
Dec 12, 2023
CVSS 5.4
EPSS 0.01
CVE-2023-5764 HIGH
Ansible < 2.14.12 and 2.16.0-2.16.1 - Template Injection via Unsafe Data Handling
Dec 12, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-5379 HIGH
JBoss EAP Undertow - Denial of Service via Oversized AJP Request Headers
Dec 12, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4958 MEDIUM
Red Hat Advanced Cluster Security - CSRF
Dec 12, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-6679 MEDIUM
Linux Kernel - Denial of Service via Null Pointer Dereference in dpll_pin_parent_pin_set
Dec 11, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-5870 LOW
PostgreSQL >=11.0 <11.22 - Denial of Service via pg_cancel_backend Role
Dec 10, 2023
CVSS 2.2
EPSS 0.01
CVE-2023-5869 HIGH
PostgreSQL >=11.0 <11.22 - Authenticated Remote Code Execution via SQL Array Value Modification
Dec 10, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-5868 MEDIUM
PostgreSQL - Info Disclosure
Dec 10, 2023
CVSS 4.3
EPSS 0.03
CVE-2023-6394 HIGH
Quarkus < 3.6.0 - Missing Authorization via WebSocket GraphQL Request
Dec 09, 2023
CVSS 7.4
EPSS 0.01
CVE-2023-6622 MEDIUM
Linux kernel - DoS
Dec 08, 2023
CVSS 5.5
EPSS 0.00
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV