Vulnerabilities in RED HAT
1,491 resultsCVE-2026-0968LOWLibssh: libssh: denial of service due to malformed sftp messageEPSS 0.4%CVE-2023-3089HIGHOcp & fips modeEPSS 0.4%CVE-2026-3260MEDIUMUndertow: undertow: denial of service due to premature multipart/form-data parsing in get requestsEPSS 0.4%CVE-2019-3864MEDIUMA vulnerability was discovered in all quay-2 versions before quay-3.0.0, in the Quay web GUI where POST requests include a specific parameteEPSS 0.4%CVE-2025-0689HIGHGrub2: udf: heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code executionEPSS 0.4%CVE-2026-10649HIGHPacemaker: pacemaker: denial of service via integer overflow in remote message decompressionEPSS 0.4%CVE-2026-37982MEDIUMKeycloak: org.keycloak.authentication: keycloak: unauthorized account takeover via webauthn token replayEPSS 0.4%CVE-2024-9779HIGHOpen-cluster-management-io/ocm: cluster-manager permissions may allow a worker node to obtain service account tokensEPSS 0.4%CVE-2026-6385MEDIUMFfmpeg: ffmpeg: denial of service and potential arbitrary code execution via signed integer overflow in dvd subtitle parserEPSS 0.4%CVE-2020-27792HIGHGhostscript: heap buffer over write vulnerability in ghostscript's lp8000_print_page() in gdevlp8k.cEPSS 0.4%CVE-2023-5341MEDIUMImagemagick: heap use-after-free in coders/bmp.cEPSS 0.4%CVE-2024-8553MEDIUMForeman: read-only access to entire db from templatesEPSS 0.4%CVE-2025-4056HIGHGlib: glib crash after long command lineEPSS 0.4%CVE-2024-3623MEDIUMMirror-registry: default database secret key stored in plain-text on initial configuration fileEPSS 0.4%CVE-2026-3184LOWUtil-linux: util-linux: access control bypass due to improper hostname canonicalizationEPSS 0.4%CVE-2025-32909MEDIUMLibsoup: null pointer dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.cEPSS 0.4%CVE-2023-40546MEDIUMShim: out-of-bounds read printing error messagesEPSS 0.4%CVE-2023-3745MEDIUMImagemagick: heap-buffer-overflow in pushcharpixel() in quantum-private.hEPSS 0.4%CVE-2023-0833MEDIUMRed hat a-mq streams: component version with information disclosure flawEPSS 0.4%CVE-2023-40548HIGHShim: interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systemsEPSS 0.4%