Vulnerabilities in Red Hat

1,491 results

Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2019-14825MEDIUMA cleartext password storage issue was discovered in Katello, versions 3.x.x.x before katello 3.12.0.9. Registry credentials used during conEPSS 0.6%CVE-2022-2232HIGHKeycloak: ldap injection on username inputEPSS 0.6%CVE-2017-7514MEDIUMA cross-site scripting (XSS) flaw was found in how the failed action entry is processed in Red Hat Satellite before version 5.8.0. A user abEPSS 0.6%CVE-2025-4598MEDIUMSystemd-coredump: race condition that allows a local attacker to crash a suid program and gain read access to the resulting core dumpEPSS 0.6%CVE-2023-3628MEDIUMInfispan: rest bulk ops don't check permissionsEPSS 0.6%CVE-2023-0456HIGHApicast proxies the api call with incorrect jwt token to the api backend without proper authorization checkEPSS 0.6%CVE-2024-31420MEDIUMCnv: dos through repeatedly calling vm-dump-metrics until virt handler crashesEPSS 0.6%CVE-2025-14831MEDIUMGnutls: gnutls: denial of service via excessive resource consumption during certificate verificationEPSS 0.6%CVE-2025-32914HIGHLibsoup: oob read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of processEPSS 0.6%CVE-2005-4890—There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be eEPSS 0.6%CVE-2016-7070HIGHA privilege escalation flaw was found in the Ansible Tower. When Tower before 3.0.3 deploys a PostgreSQL database, it incorrectly configuresEPSS 0.6%CVE-2026-4887MEDIUMGimp: gimp:memory disclosure and denial of service via specially crafted pcx imageEPSS 0.6%CVE-2023-43785MEDIUMLibx11: out-of-bounds memory access in _xkbreadkeysyms()EPSS 0.6%CVE-2024-12401MEDIUMCert-manager: potential dos when parsing specially crafted pem inputsEPSS 0.6%CVE-2026-6732MEDIUMLibxml2: libxml2: denial of service via crafted xsd-validated documentEPSS 0.6%CVE-2024-1725MEDIUMKubevirt-csi: persistentvolume allows access to hcp's root nodeEPSS 0.6%CVE-2023-6393MEDIUMQuarkus: potential invalid reuse of context when @cacheresult on a uni is usedEPSS 0.6%CVE-2025-13888CRITICALOpenshift-gitops-operator: openshift gitops: namespace admin cluster takeover via privileged jobsEPSS 0.6%CVE-2026-5265MEDIUMOvn: ovn: heap over-read in icmp error response generationEPSS 0.6%CVE-2025-0306HIGHRuby: openssl: ruby marvin attackEPSS 0.6%

← previouspage 28 / 75next →