redhat

5,762 tracked vulnerabilities.

CVE-2023-40547 HIGH
Shim <15.8 - Remote Code Execution via HTTP Boot Response Parsing
Jan 25, 2024
CVSS 8.3
EPSS 0.05
CVE-2023-6531 HIGH
Linux Kernel < 6.7 - Use-After-Free via Unix Garbage Collector Race Condition
Jan 21, 2024
CVSS 7.0
EPSS 0.00
CVE-2023-6816 CRITICAL
X.Org Server < 21.1.11 and XWayland < 23.2.4 - Out-of-bounds Write via Button Mapping
Jan 18, 2024
CVSS 9.8
EPSS 0.02
CVE-2023-4001 MEDIUM
GRUB2 - Authentication Bypass via Duplicate UUID Configuration File
Jan 15, 2024
CVSS 6.8
EPSS 0.01
CVE-2023-6915 MEDIUM
Linux Kernel < 6.7 - Denial of Service via Null Pointer Dereference in ida_free
Jan 15, 2024
CVSS 6.2
EPSS 0.00
CVE-2023-6683 MEDIUM
QEMU 6.1.0-8.2.1 - Authenticated Denial of Service via VNC ClientCutText Message
Jan 12, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-5455 MEDIUM
FreeIPA < 4.6.10 - Cross-Site Request Forgery in Session Login
Jan 10, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-6476 MEDIUM
Red Hat OpenShift Container Platform - Denial of Service via Experimental Annotation Bypass
Jan 09, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-6944 MEDIUM
Red Hat Developer Hub < 1.21.0 - GitLab Access Token Exposure via Catalog-Import Error Message
Jan 04, 2024
CVSS 5.7
EPSS 0.01
CVE-2023-6004 MEDIUM
libssh >=0.8.0 <0.9.8 - OS Command Injection via ProxyCommand or ProxyJump Hostname Parameter
Jan 03, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-7192 MEDIUM
Linux Kernel < 6.3 - Denial of Service via ctnetlink_create_conntrack Memory Leak
Jan 02, 2024
CVSS 5.5
EPSS 0.00
CVE-2023-6693 MEDIUM
QEMU < 8.2.1 - Stack-based Buffer Overflow in virtio-net TX Flush
Jan 02, 2024
CVSS 4.9
EPSS 0.00
CVE-2023-4641 MEDIUM
shadow-utils < 4.14.0 - Password Exposure via Uncleared Memory Buffer
Dec 27, 2023
CVSS 4.7
EPSS 0.00
CVE-2023-3171 HIGH
JBoss Enterprise Application Platform - Denial of Service via Unchecked HashMap/HashTable Deserialization
Dec 27, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-51767 HIGH
OpenSSH through 10.0 - Authentication Bypass via Row Hammer Bit Flip
Dec 24, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-51765 MEDIUM
sendmail < 8.18.0.2 - SMTP Smuggling via LF.CR.LF Sequence
Dec 24, 2023
CVSS 5.3
EPSS 0.01
CVE-2023-51764 MEDIUM
Postfix < 3.5.23 - SMTP Smuggling via Bare Newline Injection
Dec 24, 2023
CVSS 5.3
EPSS 0.03
CVE-2023-6546 HIGH
Linux kernel - Privilege Escalation
Dec 21, 2023
CVSS 7.0
EPSS 0.01
CVE-2023-2585 LOW
Keycloak - Auth Bypass
Dec 21, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-6918 LOW
libssh 0.9.0-0.9.8 - Denial of Service via Unchecked MD Return Values
Dec 19, 2023
CVSS 3.7
EPSS 0.01
CVE-2023-6927 MEDIUM
Keycloak < 23.0.4 - Open Redirect via JARM Response Mode Form Post JWT
Dec 18, 2023
CVSS 4.6
EPSS 0.01
CVE-2023-48795 MEDIUM NUCLEI
OpenSSH <9.6 - Open Redirect
Dec 18, 2023
CVSS 5.9
EPSS 0.93
CVE-2023-5384 HIGH
Redhat Data Grid < 8.4.6 - Cleartext Storage
Dec 18, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-5236 MEDIUM
Redhat Data Grid < 8.4.4 - Denial of Service
Dec 18, 2023
CVSS 4.4
EPSS 0.01
CVE-2023-5115 MEDIUM
Ansible Automation Platform - Path Traversal via Malicious Role Symlink
Dec 18, 2023
CVSS 6.3
EPSS 0.01