redhat

5,618 tracked vulnerabilities.

CVE-2022-41862 LOW
PostgreSQL 12.0-12.13 - Exposure of Sensitive Information via Kerberos Transport Encryption
Mar 03, 2023
CVSS 3.7
EPSS 0.00
CVE-2022-4492 HIGH
Red Hat build of Quarkus - Server-Side Request Forgery via Undertow Client
Feb 23, 2023
CVSS 7.5
EPSS 0.00
CVE-2022-3560 MEDIUM
pesign < 116 - Path Traversal via Symbolic Link Handling
Feb 02, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-4254 HIGH
sssd 1.15.3-2.3.1 - LDAP Injection via Certificate Data in LDAP Filters
Feb 01, 2023
CVSS 8.8
EPSS 0.00
CVE-2022-4285 MEDIUM
binutils 2.35-2.39-6 - Denial of Service via Corrupt ELF Symbol Version Parsing
Jan 27, 2023
CVSS 5.5
EPSS 0.00
CVE-2022-3100 MEDIUM
OpenStack Barbican - Authentication Bypass via API Query String
Jan 18, 2023
CVSS 5.9
EPSS 0.00
CVE-2022-3650 HIGH
Ceph - Privilege Escalation via Ceph-crash.service
Jan 17, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-3841 HIGH
Red Hat Advanced Cluster Management - Unauthenticated Console API Server-Side Request Forgery
Jan 13, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-3782 CRITICAL
Keycloak - Path Traversal via Double URL Encoding
Jan 13, 2023
CVSS 9.1
EPSS 0.00
CVE-2022-3143 HIGH
Wildfly-elytron < 1.15.15.Final - Timing Attack via Unsafe Comparator
Jan 13, 2023
CVSS 7.4
EPSS 0.00
CVE-2022-4743 HIGH
Libsdl Simple Directmedia Layer < 2.26.0 - Memory Leak
Jan 12, 2023
CVSS 7.5
EPSS 0.00
CVE-2022-3715 HIGH
GNU Bash 5.1-5.1.7 - Heap-Based Buffer Overflow in Parameter Transform
Jan 05, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-38065 HIGH
OpenStack <05194e7618 - Privilege Escalation
Dec 21, 2022
CVSS 8.8
EPSS 0.00
CVE-2022-3775 HIGH
GRUB2 < 2.06 - Out-of-bounds Write via Unicode Glyph Rendering
Dec 19, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-4130 MEDIUM
Red Hat Satellite - Server-Side Request Forgery via Referer Header
Dec 16, 2022
CVSS 4.5
EPSS 0.00
CVE-2022-4283 HIGH
X.Org X Server - Use-After-Free in XkbCopyNames via XkbGetKbdByName Request
Dec 14, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-2601 HIGH
GRUB2 < 2.06 - Heap-based Buffer Overflow via Crafted PF2 Font
Dec 14, 2022
CVSS 8.6
EPSS 0.00
CVE-2022-3259 HIGH
Openshift 4.9 - Missing HTTP Strict Transport Security
Dec 09, 2022
CVSS 7.4
EPSS 0.00
CVE-2022-3262 HIGH
OpenShift - Insecure Default Variable Initialization in DNS Resolution
Dec 08, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-3260 MEDIUM
Redhat Red Hat OpenShift - Clickjacking via Missing X-FRAME-OPTIONS Header
Dec 08, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-4144 MEDIUM
QEMU < 7.1.0 - Out-of-bounds Read in QXL Display Device Emulation
Nov 29, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-4116 CRITICAL
Quarkus < 2.13.5 and 2.14.0-2.14.2.Final - Remote Code Execution via Dev UI Config Editor
Nov 22, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-3500 MEDIUM
keylime < 6.5.1 - Uncaught Exception Leading to Attestation Bypass
Nov 22, 2022
CVSS 5.1
EPSS 0.00
CVE-2022-3821 MEDIUM
systemd < 251 - Denial of Service via format_timespan() Off-by-one Error
Nov 08, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-3675 LOW
Fedora CoreOS >=36.20220820.3.0 <37.20221031.1.0 - Unauthenticated OSTree Deployment Boot Bypass
Nov 03, 2022
CVSS 2.6
EPSS 0.00
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV