redhat

5,618 tracked vulnerabilities.

CVE-2020-35497 MEDIUM
ovirt-engine < 4.4.3 - Authenticated Improper Access Control
Dec 21, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-27846 CRITICAL
Grafana < 6.7.5 - SAML Authentication Bypass via Signature Verification Flaw
Dec 21, 2020
CVSS 9.8
EPSS 0.08
CVE-2020-27781 HIGH
Ceph < 14.2.16, 15.x < 15.2.8, 16.x < 16.2.0 - Insufficiently Protected Credentials via OpenStack Manila Share Access
Dec 18, 2020
CVSS 7.1
EPSS 0.00
CVE-2020-14302 MEDIUM
Keycloak < 13.0.0 - Authentication Bypass via State Parameter Replay
Dec 15, 2020
CVSS 4.9
EPSS 0.00
CVE-2020-10770 MEDIUM NUCLEI
Keycloak < 13.0.0 - Server-Side Request Forgery via OIDC request_uri Parameter
Dec 15, 2020
CVSS 5.3
EPSS 0.92
CVE-2020-27777 MEDIUM
Linux Kernel < 4.14.204 - Missing Authorization in RTAS Memory Access Handling
Dec 15, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-25712 HIGH
x.org X Server < 1.20.10 - Heap-based Buffer Overflow in XkbSetDeviceInfo
Dec 15, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-27825 MEDIUM
Linux Kernel - Use-After-Free in Ring Buffer Trace Open
Dec 11, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-27786 HIGH
Linux Kernel < 4.4.224 - Use-After-Free in MIDI ioctl Handler
Dec 11, 2020
CVSS 7.8
EPSS 0.07
CVE-2020-17159 HIGH
Visual Studio Code Java Extension Pack - RCE
Dec 10, 2020
CVSS 7.8
EPSS 0.09
CVE-2020-27822 MEDIUM
Wildfly 19.0.0.Final-21.0.0.Final - Use-After-Free in OpenTracing Java-Interceptors
Dec 08, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-25692 HIGH
OpenLDAP < 2.4.55 - Unauthenticated Denial of Service via RDN Renaming Request
Dec 08, 2020
CVSS 7.5
EPSS 0.06
CVE-2020-25677 MEDIUM
ceph-ansible - Cleartext Storage of Sensitive Information in iscsi-gateway.conf
Dec 08, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-29573 HIGH
GNU C Library <2.23 - Buffer Overflow
Dec 06, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-27773 LOW
ImageMagick < 6.9.10-69 - Denial of Service via Crafted File Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27772 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in BMP Coder
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27776 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in MagickCore/statistic.c
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27775 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in Quantum Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27774 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in MagickCore/statistic.c
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27771 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in PDF Coder
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27767 LOW
ImageMagick < 6.9.10-69 - Integer Overflow in Quantum Handling
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27765 LOW
ImageMagick < 6.9.10-69 - Denial of Service via Division by Zero in Segment Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.00
CVE-2020-27783 MEDIUM
lxml < 4.6.2 - Cross-Site Scripting via Clean Module Parser
Dec 03, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-27778 HIGH
Poppler < 0.76.0 - Denial of Service via PDF to HTML Conversion
Dec 03, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-25711 MEDIUM
Infinispan < 11.0.6 - Missing Authorization for Server Management Operations
Dec 03, 2020
CVSS 6.5
EPSS 0.00
Products
enterprise_linux_desktop 1,928 enterprise_linux_server 1,891 enterprise_linux_workstation 1,845 enterprise_linux 1,780 enterprise_linux_server_aus 1,059 enterprise_linux_eus 780 enterprise_linux_server_tus 768 enterprise_linux_server_eus 622 openshift_container_platform 291 jboss_enterprise_application_platform 243 linux 229 satellite 222 openstack 210 enterprise_linux_hpc_node 146 openshift 146 software_collections 137 virtualization 128 enterprise_linux_for_ibm_z_systems 112 single_sign-on 108 enterprise_linux_for_power_little_endian 106 keycloak 98 enterprise_linux_for_power_little_endian_eus 93 enterprise_linux_for_ibm_z_systems_eus 87 enterprise_linux_workstation_supplementary 86 enterprise_linux_desktop_supplementary 84 enterprise_linux_server_supplementary 84 virtualization_host 84 enterprise_linux_server_supplementary_eus 83 enterprise_linux_hpc_node_eus 81 fedora_core 77
Quick Filters
Critical CVEs With Exploits In CISA KEV