redhat

5,618 tracked vulnerabilities.

CVE-2023-5217 HIGH KEV
libvpx < 1.13.1 - Heap Buffer Overflow in VP8 Encoding
Sep 28, 2023
CVSS 8.8
EPSS 0.05
CVE-2023-5215 MEDIUM
libnbd - Denial of Service via Unchecked Return Value in nbd_get_size()
Sep 28, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-42756 MEDIUM
Linux Kernel < 6.6 - Denial of Service via Netfilter IPSET Race Condition
Sep 28, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-4066 MEDIUM
Red Hat AMQ Broker - Info Disclosure
Sep 27, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-5157 HIGH
MariaDB < 10.3.36 - Denial of Service via OpenVAS Port Scan
Sep 27, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-4065 MEDIUM
Red Hat AMQ Broker Operator - Info Disclosure
Sep 27, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-3223 HIGH
Undertow < 2.2.24 - Denial of Service via Large Multipart Content Bypass
Sep 27, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-0833 MEDIUM
okhttp < 4.9.2 - Information Disclosure via Exception Message
Sep 27, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-0456 HIGH
APICast < 2.12.2 - Missing Authorization via OIDC Token Realm Mismatch
Sep 27, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-42753 HIGH
Linux Kernel 4.4.165-4.4.299 - Out-of-bounds Write in Netfilter Subsystem
Sep 25, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-4156 MEDIUM
gawk < 5.1.1 - Heap Out-of-Bounds Read in builtin.c
Sep 25, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-5156 HIGH
glibc 2.34-2.38 - Use-After-Free in getaddrinfo
Sep 25, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-1636 MEDIUM
OpenStack Barbican - Privilege Escalation
Sep 24, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-1633 MEDIUM
OpenStack Barbican - Info Disclosure
Sep 24, 2023
CVSS 6.6
EPSS 0.00
CVE-2023-1625 HIGH
OpenStack Heat - Authenticated Information Disclosure via Stack Show Command
Sep 24, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-1260 HIGH
kube-apiserver - Authentication Bypass via Ephemeral Containers Subresource
Sep 24, 2023
CVSS 8.0
EPSS 0.00
CVE-2023-0462 HIGH
Foreman < 3.8.0 - Authenticated Remote Code Execution via YAML Global Parameter Injection
Sep 20, 2023
CVSS 8.0
EPSS 0.00
CVE-2023-0118 CRITICAL
Foreman - Admin Template Safe Mode Bypass to Code Execution
Sep 20, 2023
CVSS 9.1
EPSS 0.00
CVE-2023-4853 HIGH
Quarkus < 2.16.11 - HTTP Security Policy Bypass via Input Neutralization Flaw
Sep 20, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-4806 MEDIUM
glibc - Use-After-Free in getaddrinfo with NSS Module Hooks
Sep 18, 2023
CVSS 5.9
EPSS 0.02
CVE-2023-4527 MEDIUM
glibc >=2.36 <2.36.113 - Stack-based Buffer Overflow via getaddrinfo DNS Response
Sep 18, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-0923 HIGH
Red Hat OpenShift Data Science 1.22-1.22.1-3 - Missing Authorization in Jupyter API
Sep 15, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-0813 HIGH
Red Hat Network Observability - Unauthenticated Access via Loki authToken Misconfiguration
Sep 15, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-4959 MEDIUM
Quay - Cross-Site Request Forgery in Config-Editor Page
Sep 15, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-1108 HIGH
Redhat Build OF Quarkus < 2.2.24 - Infinite Loop
Sep 14, 2023
CVSS 7.5
EPSS 0.01
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV