redhat
5,762 tracked vulnerabilities.
CVE-2026-8830
MEDIUM
Keycloak: org.keycloak/keycloak-services: keycloak: policy bypass during webauthn credential registration via client-side javascript manipulation
May 19, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-42009
HIGH
Gnutls: gnutls: denial of service via dtls packet reordering vulnerability
May 18, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-42271
HIGH
KEVNUCLEI
LiteLLM: Authenticated command execution via MCP stdio test endpoints
May 08, 2026
CVSS 8.8
EPSS 0.80
CVE-2026-42010
HIGH
Gnutls: gnutls: authentication bypass via nul character in username
May 07, 2026
CVSS 7.1
EPSS 0.01
CVE-2026-34002
MEDIUM
X.Org X Server Xwayland - XKB Modifier Map Out-of-Bounds Read
May 05, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-34000
MEDIUM
X.Org X Server Xwayland - XKB Geometry Out-of-Bounds Read
May 05, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-3833
MEDIUM
Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison
Apr 30, 2026
CVSS 6.5
EPSS 0.01
CVE-2026-3832
LOW
Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response
Apr 30, 2026
CVSS 3.7
EPSS 0.01
CVE-2026-33845
HIGH
Gnutls: gnutls: denial of service via dtls zero-length fragment
Apr 30, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-7500
MEDIUM
Org.keycloak.keycloak-services: improper access control on keycloak server when the account account api feature is disabled
Apr 30, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-7163
MEDIUM
Red Hat Multicluster Engine Assisted Installer - Administrative Credential Disclosure
Apr 30, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-7309
MEDIUM
Openshift-controller-manager: openshift container platform: information disclosure via environment variable injection
Apr 28, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-6732
MEDIUM
Libxml2: libxml2: denial of service via crafted xsd-validated document
Apr 23, 2026
CVSS 6.5
EPSS 0.01
CVE-2026-2708
LOW
Libsoup: libsoup: http request smuggling via duplicate content-length headers
Apr 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-6859
HIGH
Instructlab: instructlab: arbitrary code execution due to hardcoded `trust_remote_code=true`
Apr 22, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-6855
HIGH
InstructLab - Path Traversal Arbitrary File Write
Apr 22, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-6848
MEDIUM
Quay: red hat quay: authentication bypass allows privileged actions without valid credentials
Apr 22, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-6846
HIGH
Binutils: binutils: arbitrary code execution via malformed xcoff object file processing
Apr 22, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-6845
MEDIUM
Binutils: binutils: denial of service via crafted elf file
Apr 22, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-6844
MEDIUM
Binutils: binutils: denial of service vulnerabilities in readelf via crafted elf files
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-6843
MEDIUM
Nano: nano: format string vulnerability leads to denial of service
Apr 22, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-31431
HIGH
KEVNUCLEI
crypto: algif_aead - Revert to operating out-of-place
Apr 22, 2026
CVSS 7.8
EPSS 0.96
CVE-2026-41082
HIGH
OCaml opam < 2.5.1 - Path Traversal via .install Field
Apr 16, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-6384
HIGH
Gimp: gimp: arbitrary code execution or denial of service via buffer overflow in gif image processing
Apr 15, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-40919
MEDIUM
Gimp: gimp: denial of service via specially crafted seattle filmworks file
Apr 15, 2026
CVSS 6.1
EPSS 0.00
Products
enterprise_linux_desktop 1,928
enterprise_linux_server 1,891
enterprise_linux 1,852
enterprise_linux_workstation 1,845
enterprise_linux_server_aus 1,059
enterprise_linux_eus 784
enterprise_linux_server_tus 768
enterprise_linux_server_eus 622
openshift_container_platform 313
jboss_enterprise_application_platform 242
satellite 232
linux 229
openstack 210
enterprise_linux_hpc_node 146
openshift 146
software_collections 137
virtualization 128
enterprise_linux_for_ibm_z_systems 113
enterprise_linux_for_power_little_endian 107
single_sign-on 107
keycloak 98
enterprise_linux_for_power_little_endian_eus 94
enterprise_linux_for_ibm_z_systems_eus 88
enterprise_linux_workstation_supplementary 86
enterprise_linux_desktop_supplementary 84
enterprise_linux_server_supplementary 84
virtualization_host 84
enterprise_linux_server_supplementary_eus 83
enterprise_linux_hpc_node_eus 81
fedora_core 77
Quick Filters