Vulnerabilities in Red Hat

1,485 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2023-5625MEDIUMPython-eventlet: patch regression for cve-2021-21419 in some red hat buildsEPSS 0.8%CVE-2024-7341HIGHWildfly-elytron: org.keycloak/keycloak-services: session fixation in elytron saml adaptersEPSS 0.8%CVE-2019-14854MEDIUMOpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to DebEPSS 0.8%CVE-2025-23368HIGHOrg.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cliEPSS 0.8%CVE-2025-32911CRITICALLibsoup: double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" ghashtable valueEPSS 0.8%CVE-2024-10963HIGHPam: improper hostname interpretation in pam_access leads to access control bypassEPSS 0.8%CVE-2025-11234HIGHQemu-kvm: vnc websocket handshake use-after-freeEPSS 0.8%CVE-2024-4629MEDIUMKeycloak: potential bypass of brute force protectionEPSS 0.8%CVE-2023-6596HIGHOpenshift: incomplete fix for rapid reset (cve-2023-44487/cve-2023-39325)EPSS 0.8%CVE-2024-4438HIGHEtcd: incomplete fix for cve-2023-39325/cve-2023-44487 in openstack platformEPSS 0.8%CVE-2022-4039HIGHRhsso-container-image: unsecured management interface exposed to adjecent networkEPSS 0.8%CVE-2024-1102MEDIUMJberet: jberet-core logging database credentialsEPSS 0.8%CVE-2025-32906HIGHLibsoup: out of bounds reads in soup_headers_parse_request()EPSS 0.8%CVE-2024-6239HIGHPoppler: pdfinfo: crash in broken documents when using -dests parameterEPSS 0.8%CVE-2025-5024HIGHGnome-remote-desktop: uncontrolled resource consumption due to malformed rdp pdusEPSS 0.8%CVE-2024-2182MEDIUMOvn: insufficient validation of bfd packets may lead to denial of serviceEPSS 0.8%CVE-2024-7700MEDIUMForeman: command injection in "host init config" template via "install packages" field on foremanEPSS 0.8%CVE-2024-1233HIGHEap: wildfly-elytron has a ssrf security issueEPSS 0.8%CVE-2025-5449MEDIUMLibssh: integer overflow in libssh sftp server packet length validation leading to denial of serviceEPSS 0.8%CVE-2026-33845HIGHGnutls: gnutls: denial of service via dtls zero-length fragmentEPSS 0.8%