redhat

5,618 tracked vulnerabilities.

CVE-2021-42781 MEDIUM
OpenSC < 0.22.0 - Heap Buffer Overflow in pkcs15-oberthur.c
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42780 MEDIUM
OpenSC < 0.22.0 - Use-After-Free in insert_pin Function
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42779 MEDIUM
OpenSC < 0.22.0 - Use-After-Free in sc_file_valid
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-42778 MEDIUM
OpenSC < 0.22.0 - Double Free in sc_pkcs15_free_tokeninfo
Apr 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2021-3681 MEDIUM
Ansible Galaxy Collections - Insufficiently Protected Credentials via Build Ignore List
Apr 18, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3503 MEDIUM
Wildfly < 23.0.1 - Exposure of Sensitive Metrics Data
Apr 18, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-4047 HIGH
Red Hat OpenShift 4.9 - Improper Input Validation
Apr 11, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3461 HIGH
Keycloak - Insufficient Session Expiration via SAML Identity Provider Logout
Apr 01, 2022
CVSS 7.1
EPSS 0.00
CVE-2021-20238 LOW
OpenShift Container Platform - Unauthenticated Sensitive Data Exposure via Machine Config Server Endpoint
Apr 01, 2022
CVSS 3.7
EPSS 0.00
CVE-2021-4147 MEDIUM
libvirt - Denial of Service via Guest Reboot Deadlock
Mar 25, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3941 MEDIUM
OpenEXR - Denial of Service via Divide-by-Zero in RGBtoXYZ
Mar 25, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-3814 HIGH
3scale < 2.11.0 - Missing Authorization in APIdocs Token Validation
Mar 25, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-20323 MEDIUM NUCLEI
Keycloak < 17.0.0 - Reflected Cross-Site Scripting via POST Request
Mar 25, 2022
CVSS 6.1
EPSS 0.66
CVE-2021-4180 MEDIUM
openstack-tripleo-heat-templates < 11.6.1 - Sensitive Information Exposure via www_authenticate_uri
Mar 23, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-3748 HIGH
QEMU 0.10.0-6.1.0 - Use-After-Free in virtio-net Descriptor Handling
Mar 23, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3589 HIGH
Foreman Ansible - Privilege Escalation
Mar 23, 2022
CVSS 8.0
EPSS 0.00
CVE-2021-20257 MEDIUM
QEMU < 6.2.0 - Denial of Service via e1000 NIC Emulator Infinite Loop
Mar 16, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-20180 MEDIUM
Ansible < 2.9.18 and 2.8.0a1-2.8.19 - Credential Exposure in Console Log via bitbucket_pipeline_variable Module
Mar 16, 2022
CVSS 5.5
EPSS 0.00
CVE-2021-3733 MEDIUM
Python < 3.6.14 - Regular Expression Denial of Service in urllib AbstractBasicAuthHandler
Mar 10, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-3698 HIGH
Cockpit < 260 - Improper Certificate Validation via SSSD
Mar 10, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3660 MEDIUM
cockpit-project/cockpit < 254 - Clickjacking via iFrame Rendering
Mar 10, 2022
CVSS 4.3
EPSS 0.00
CVE-2021-3737 HIGH
Python >=3.6.0 <3.6.14 - Denial of Service via HTTP Response Handling
Mar 04, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-3656 HIGH
Linux Kernel 4.13-<4.14.245 - Missing Authorization in KVM SVM Nested Virtualization
Mar 04, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-3575 HIGH
OpenJPEG < 2.4.0 - Heap-Based Buffer Overflow in sycc420_to_rgb
Mar 04, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-20319 HIGH
coreos-installer < 0.10.1 - Improper Verification of Cryptographic Signature via Crafted Gzip Image
Mar 04, 2022
CVSS 7.8
EPSS 0.00
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV