redhat

5,618 tracked vulnerabilities.

CVE-2026-5483 HIGH
Odh-dashboard: odh dashboard kubernetes service account exposure
Apr 10, 2026
CVSS 8.5
EPSS 0.00
CVE-2026-1584 HIGH
Gnutls: gnutls: remote denial of service via crafted clienthello with invalid psk binder
Apr 09, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4878 MEDIUM
Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()
Apr 09, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-32591 MEDIUM
Mirror-registry: quay: server-side request forgery in proxy cache upstream registry configuration
Apr 08, 2026
CVSS 5.2
EPSS 0.00
CVE-2026-32590 HIGH
Mirror-registry: remote code execution using pickle deserialization
Apr 08, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-32589 HIGH
Mirror-registry: quay: insecure direct object reference in blobupload
Apr 08, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-2377 MEDIUM
Mirror-registry: quay: quay: server-side request forgery via log export functionality
Apr 08, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-5745 MEDIUM
Libarchive: a null pointer dereference vulnerability exists in the acl parser of libarchive
Apr 07, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-4740 HIGH
Rhacm: open cluster management (ocm): cross-cluster privilege escalation via improper kubernetes client certificate renewal validation
Apr 07, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-5704 MEDIUM
Tar: tar: hidden file injection via crafted archives
Apr 06, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-5673 MEDIUM
Libtheora: libtheora: denial of service or information disclosure via malformed avi file processing
Apr 06, 2026
CVSS 5.6
EPSS 0.00
CVE-2026-3184 LOW
Util-linux: util-linux: access control bypass due to improper hostname canonicalization
Apr 03, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-2625 MEDIUM
Rust-rpm-sequoia: rust-rpm-sequoia: denial of service via crafted rpm file during signature verification
Apr 03, 2026
CVSS 4.0
EPSS 0.00
CVE-2026-4636 HIGH
Keycloak UMA Policy - Unauthorized Resource Access
Apr 02, 2026
CVSS 8.1
EPSS 0.00
CVE-2026-4634 HIGH
Keycloak: keycloak: denial of service via excessive processing of openid connect scope parameters
Apr 02, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-4325 MEDIUM
Keycloak: keycloak: replay of action tokens via improper handling of single-use entries
Apr 02, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-4282 HIGH
Keycloak: keycloak: privilege escalation via forged authorization codes due to singleuseobjectprovider isolation flaw
Apr 02, 2026
CVSS 7.4
EPSS 0.00
CVE-2026-3872 HIGH
Red Hat Keycloak 26.2 and 26.4 - redirect_uri Access Token Disclosure
Apr 02, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-35092 HIGH
Corosync: corosync: denial of service via integer overflow in join message validation
Apr 01, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-35091 HIGH
Corosync: corosync: denial of service and information disclosure via crafted udp packet
Apr 01, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-5201 HIGH
Gdk-pixbuf: gdk-pixbuf: denial of service via heap-based buffer overflow when processing a specially crafted jpeg image
Mar 31, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-5165 MEDIUM
Virtio-win: virtio-win: memory corruption via use-after-free in virtio blk device reset
Mar 30, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-5164 MEDIUM
Virtio-win: virtio-win: denial of service via unvalidated descriptor count in unmap request
Mar 30, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-5121 HIGH
Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing
Mar 30, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-5119 MEDIUM
Libsoup: libsoup: information disclosure via cleartext transmission of cookies during https tunnel establishment
Mar 30, 2026
CVSS 5.9
EPSS 0.00
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV