Vulnerabilities in Red Hat

1,504 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2024-0409HIGHXorg-x11-server: selinux context corruptionEPSS 0.4%CVE-2023-38253MEDIUMW3m: out of bounds read in growbuf_to_str() at w3m/indep.cEPSS 0.4%CVE-2023-38252MEDIUMW3m: out of bounds read in strnew_size() at w3m/str.cEPSS 0.4%CVE-2026-3099MEDIUMLibsoup: libsoup: authentication bypass via digest authentication replay attackEPSS 0.4%CVE-2024-45616LOWLibopensc: uninitialized values after incorrect check or usage of apdu response values in libopenscEPSS 0.4%CVE-2024-45615LOWLibopensc: pkcs15init: usage of uninitialized values in libopensc and pkcs15initEPSS 0.4%CVE-2026-42012HIGHGnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sansEPSS 0.4%CVE-2026-0976LOWOrg.keycloak/keycloak-quarkus-server: keycloak: proxy bypass due to improper handling of matrix parameters in url pathsEPSS 0.4%CVE-2023-2860MEDIUMOut-of-bounds read when setting hmac dataEPSS 0.4%CVE-2018-10894MEDIUMIt was found that SAML authentication in Keycloak 3.4.3.Final incorrectly authenticated expired certificates. A malicious user could use thiEPSS 0.4%CVE-2023-43789MEDIUMLibxpm: out of bounds read on xpm with corrupted colormapEPSS 0.4%CVE-2025-14459HIGHVirt-cdi-controller: unauthorized pvc cloning via dataimportcronEPSS 0.4%CVE-2025-26594HIGHX.org: xwayland: use-after-free of the root cursorEPSS 0.4%CVE-2025-26601HIGHXorg: xwayland: use-after-free in syncinittrigger()EPSS 0.4%CVE-2025-26600HIGHXorg: xwayland: use-after-free in playreleasedevents()EPSS 0.4%CVE-2026-14164HIGHLibarchive: double-free vulnerability in rar5 decompression logic via dangling filtered_buf pointer in init_unpack()EPSS 0.4%CVE-2025-9572MEDIUMForeman: satellite: graphql api permission bypass leads to information disclosureEPSS 0.3%CVE-2025-4035MEDIUMLibsoup: cookie domain validation bypass via uppercase characters in libsoupEPSS 0.3%CVE-2024-10573MEDIUMMpg123: buffer overflow when writing decoded pcm samplesEPSS 0.3%CVE-2026-9088LOWKeycloak: keycloak: information disclosure due to user profile permission bypassEPSS 0.3%