redhat
5,766 tracked vulnerabilities.
CVE-2020-27781
HIGH
Ceph < 14.2.16, 15.x < 15.2.8, 16.x < 16.2.0 - Insufficiently Protected Credentials via OpenStack Manila Share Access
Dec 18, 2020
CVSS 7.1
EPSS 0.00
CVE-2020-14302
MEDIUM
Keycloak < 13.0.0 - Authentication Bypass via State Parameter Replay
Dec 15, 2020
CVSS 4.9
EPSS 0.01
CVE-2020-10770
MEDIUM
NUCLEI
Keycloak < 13.0.0 - Server-Side Request Forgery via OIDC request_uri Parameter
Dec 15, 2020
CVSS 5.3
EPSS 0.70
CVE-2020-27777
MEDIUM
Linux Kernel < 4.14.204 - Missing Authorization in RTAS Memory Access Handling
Dec 15, 2020
CVSS 6.7
EPSS 0.01
CVE-2020-25712
HIGH
x.org X Server < 1.20.10 - Heap-based Buffer Overflow in XkbSetDeviceInfo
Dec 15, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-27825
MEDIUM
Linux Kernel - Use-After-Free in Ring Buffer Trace Open
Dec 11, 2020
CVSS 5.7
EPSS 0.00
CVE-2020-27786
HIGH
Linux Kernel < 4.4.224 - Use-After-Free in MIDI ioctl Handler
Dec 11, 2020
CVSS 7.8
EPSS 0.02
CVE-2020-17159
HIGH
Visual Studio Code Java Extension Pack - RCE
Dec 10, 2020
CVSS 7.8
EPSS 0.03
CVE-2020-27822
MEDIUM
Wildfly 19.0.0.Final-21.0.0.Final - Use-After-Free in OpenTracing Java-Interceptors
Dec 08, 2020
CVSS 5.9
EPSS 0.01
CVE-2020-25692
HIGH
OpenLDAP < 2.4.55 - Unauthenticated Denial of Service via RDN Renaming Request
Dec 08, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-25677
MEDIUM
ceph-ansible - Cleartext Storage of Sensitive Information in iscsi-gateway.conf
Dec 08, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-29573
HIGH
GNU C Library <2.23 - Buffer Overflow
Dec 06, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-27773
LOW
ImageMagick < 6.9.10-69 - Denial of Service via Crafted File Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27772
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in BMP Coder
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27776
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in MagickCore/statistic.c
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27775
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in Quantum Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27774
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in MagickCore/statistic.c
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27771
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in PDF Coder
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27767
LOW
ImageMagick < 6.9.10-69 - Integer Overflow in Quantum Handling
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27765
LOW
ImageMagick < 6.9.10-69 - Denial of Service via Division by Zero in Segment Processing
Dec 04, 2020
CVSS 3.3
EPSS 0.01
CVE-2020-27783
MEDIUM
lxml < 4.6.2 - Cross-Site Scripting via Clean Module Parser
Dec 03, 2020
CVSS 6.1
EPSS 0.04
CVE-2020-27778
HIGH
Poppler < 0.76.0 - Denial of Service via PDF to HTML Conversion
Dec 03, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-25711
MEDIUM
Infinispan < 11.0.6 - Missing Authorization for Server Management Operations
Dec 03, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-14351
HIGH
Linux Kernel < 5.8.17 - Use-After-Free in Perf Subsystem
Dec 03, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-14339
HIGH
libvirt 6.2.0-6.6.9 - Privilege Escalation via /dev/mapper/control File Descriptor Leak
Dec 03, 2020
CVSS 8.8
EPSS 0.00
Products
enterprise_linux_desktop 1,928
enterprise_linux_server 1,891
enterprise_linux 1,856
enterprise_linux_workstation 1,845
enterprise_linux_server_aus 1,059
enterprise_linux_eus 784
enterprise_linux_server_tus 768
enterprise_linux_server_eus 622
openshift_container_platform 313
jboss_enterprise_application_platform 242
satellite 232
linux 229
openstack 210
enterprise_linux_hpc_node 146
openshift 146
software_collections 137
virtualization 128
enterprise_linux_for_ibm_z_systems 113
enterprise_linux_for_power_little_endian 107
single_sign-on 107
keycloak 98
enterprise_linux_for_power_little_endian_eus 94
enterprise_linux_for_ibm_z_systems_eus 88
enterprise_linux_workstation_supplementary 86
enterprise_linux_desktop_supplementary 84
enterprise_linux_server_supplementary 84
virtualization_host 84
enterprise_linux_server_supplementary_eus 83
enterprise_linux_hpc_node_eus 81
fedora_core 77
Quick Filters