redhat
5,762 tracked vulnerabilities.
CVE-2023-40547
HIGH
Shim <15.8 - Remote Code Execution via HTTP Boot Response Parsing
Jan 25, 2024
CVSS 8.3
EPSS 0.05
CVE-2023-6531
HIGH
Linux Kernel < 6.7 - Use-After-Free via Unix Garbage Collector Race Condition
Jan 21, 2024
CVSS 7.0
EPSS 0.00
CVE-2023-6816
CRITICAL
X.Org Server < 21.1.11 and XWayland < 23.2.4 - Out-of-bounds Write via Button Mapping
Jan 18, 2024
CVSS 9.8
EPSS 0.02
CVE-2023-4001
MEDIUM
GRUB2 - Authentication Bypass via Duplicate UUID Configuration File
Jan 15, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-6915
MEDIUM
Linux Kernel < 6.7 - Denial of Service via Null Pointer Dereference in ida_free
Jan 15, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-6683
MEDIUM
QEMU 6.1.0-8.2.1 - Authenticated Denial of Service via VNC ClientCutText Message
Jan 12, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-5455
MEDIUM
FreeIPA < 4.6.10 - Cross-Site Request Forgery in Session Login
Jan 10, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-6476
MEDIUM
Red Hat OpenShift Container Platform - Denial of Service via Experimental Annotation Bypass
Jan 09, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-6944
MEDIUM
Red Hat Developer Hub < 1.21.0 - GitLab Access Token Exposure via Catalog-Import Error Message
Jan 04, 2024
CVSS 5.7
EPSS 0.01
CVE-2023-6004
MEDIUM
libssh >=0.8.0 <0.9.8 - OS Command Injection via ProxyCommand or ProxyJump Hostname Parameter
Jan 03, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-7192
MEDIUM
Linux Kernel < 6.3 - Denial of Service via ctnetlink_create_conntrack Memory Leak
Jan 02, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-6693
MEDIUM
QEMU < 8.2.1 - Stack-based Buffer Overflow in virtio-net TX Flush
Jan 02, 2024
CVSS 4.9
EPSS 0.00
CVE-2023-4641
MEDIUM
shadow-utils < 4.14.0 - Password Exposure via Uncleared Memory Buffer
Dec 27, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-3171
HIGH
JBoss Enterprise Application Platform - Denial of Service via Unchecked HashMap/HashTable Deserialization
Dec 27, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-51767
HIGH
OpenSSH through 10.0 - Authentication Bypass via Row Hammer Bit Flip
Dec 24, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-51765
MEDIUM
sendmail < 8.18.0.2 - SMTP Smuggling via LF.CR.LF Sequence
Dec 24, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-51764
MEDIUM
Postfix < 3.5.23 - SMTP Smuggling via Bare Newline Injection
Dec 24, 2023
CVSS 5.3
EPSS 0.03
CVE-2023-6546
HIGH
Linux kernel - Privilege Escalation
Dec 21, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-2585
LOW
Keycloak - Auth Bypass
Dec 21, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-6918
LOW
libssh 0.9.0-0.9.8 - Denial of Service via Unchecked MD Return Values
Dec 19, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-6927
MEDIUM
Keycloak < 23.0.4 - Open Redirect via JARM Response Mode Form Post JWT
Dec 18, 2023
CVSS 4.6
EPSS 0.01
CVE-2023-48795
MEDIUM
NUCLEI
OpenSSH <9.6 - Open Redirect
Dec 18, 2023
CVSS 5.9
EPSS 0.93
CVE-2023-5384
HIGH
Redhat Data Grid < 8.4.6 - Cleartext Storage
Dec 18, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-5236
MEDIUM
Redhat Data Grid < 8.4.4 - Denial of Service
Dec 18, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-5115
MEDIUM
Ansible Automation Platform - Path Traversal via Malicious Role Symlink
Dec 18, 2023
CVSS 6.3
EPSS 0.01
Products
enterprise_linux_desktop 1,928
enterprise_linux_server 1,891
enterprise_linux 1,852
enterprise_linux_workstation 1,845
enterprise_linux_server_aus 1,059
enterprise_linux_eus 784
enterprise_linux_server_tus 768
enterprise_linux_server_eus 622
openshift_container_platform 313
jboss_enterprise_application_platform 242
satellite 232
linux 229
openstack 210
enterprise_linux_hpc_node 146
openshift 146
software_collections 137
virtualization 128
enterprise_linux_for_ibm_z_systems 113
enterprise_linux_for_power_little_endian 107
single_sign-on 107
keycloak 98
enterprise_linux_for_power_little_endian_eus 94
enterprise_linux_for_ibm_z_systems_eus 88
enterprise_linux_workstation_supplementary 86
enterprise_linux_desktop_supplementary 84
enterprise_linux_server_supplementary 84
virtualization_host 84
enterprise_linux_server_supplementary_eus 83
enterprise_linux_hpc_node_eus 81
fedora_core 77
Quick Filters