Vulnerabilities in Red Hat

1,485 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2020-1741MEDIUMA flaw was found in openshift-ansible. OpenShift Container Platform (OCP) 3.11 is too permissive in the way it specified CORS allowed originEPSS 0.9%CVE-2023-3171HIGHEap-7: heap exhaustion via deserializationEPSS 0.9%CVE-2023-7008MEDIUMSystemd-resolved: unsigned name response in signed zone is not refused when dnssec=yesEPSS 0.8%CVE-2026-2272MEDIUMGimp: gimp: memory corruption due to integer overflow in ico file handlingEPSS 0.8%CVE-2019-14899HIGHA vulnerability was discovered in Linux, FreeBSD, OpenBSD, MacOS, iOS, and Android that allows a malicious access point, or an adjacent userEPSS 0.8%CVE-2024-0193HIGHKernel: netfilter: use-after-free in nft_trans_gc_catchall_sync leads to privilege escalationEPSS 0.8%CVE-2023-5189MEDIUMHub: insecure galaxy-importer tarfile extractionEPSS 0.8%CVE-2023-4061MEDIUMWildfly-core: management user rbac permission allows unexpected reading of system-properties to an unauthorized actorEPSS 0.8%CVE-2023-4458MEDIUMKernel: ksmbd: smb2_open out-of-bounds read information disclosure vulnerabilityEPSS 0.8%CVE-2025-0650HIGHOvn: egress acls may be bypassed via specially crafted udp packetEPSS 0.8%CVE-2023-47038HIGHPerl: write past buffer end via illegal user-defined unicode propertyEPSS 0.8%CVE-2026-1933HIGHSamba: missing access check on reparse point operationsEPSS 0.8%CVE-2026-4271MEDIUMLibsoup: libsoup: denial of service via use-after-free in http/2 serverEPSS 0.8%CVE-2025-4432MEDIUMRing: some aes functions may panic when overflow checking is enabled in ringEPSS 0.8%CVE-2020-1724MEDIUMA flaw was found in Keycloak in versions before 9.0.2. This flaw allows a malicious user that is currently logged in, to see the personal inEPSS 0.8%CVE-2009-4139MEDIUMSpacewalk-java: spacewalk: red hat network satellite: spacewalk java: privilege escalation via cross-site request forgeryEPSS 0.8%CVE-2026-9064HIGH389-ds-base: 389-ds-base: unbounded ldap controls count in get_ldapmessage_controls_ext() causes cpu and heap amplification (remote dos)EPSS 0.8%CVE-2023-6394HIGHQuarkus: graphql operations over websockets bypassEPSS 0.8%CVE-2024-5037HIGHOpenshift/telemeter: iss check during jwt authentication can be bypassedEPSS 0.8%CVE-2024-7923CRITICALPuppet-pulpcore: an authentication bypass vulnerability exists in pulpcoreEPSS 0.8%