Vulnerabilities in Red Hat

1,504 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2026-10843HIGHCloud-credential-operator: cco mint-mode credentialsrequest manifests grant account-wide iam access beyond cluster scope on awsEPSS 0.3%CVE-2019-19335MEDIUMDuring installation of an OpenShift 4 cluster, the `openshift-install` command line tool creates an `auth` directory, with `kubeconfig` and EPSS 0.3%CVE-2025-5914HIGHLibarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.cEPSS 0.3%CVE-2026-1489MEDIUMGlib: glib: memory corruption via integer overflow in unicode case conversionEPSS 0.3%CVE-2023-6622MEDIUMKernel: null pointer dereference vulnerability in nft_dynset_init()EPSS 0.3%CVE-2024-4693MEDIUMQemu-kvm: virtio-pci: improper release of configure vector leads to guest triggerable crashEPSS 0.3%CVE-2024-0408MEDIUMXorg-x11-server: selinux unlabeled glx pbufferEPSS 0.3%CVE-2026-2708LOWLibsoup: libsoup: http request smuggling via duplicate content-length headersEPSS 0.3%CVE-2025-14082LOWKeycloak-services: keycloak admin rest api: improper access control leads to sensitive role metadata information disclosureEPSS 0.3%CVE-2026-9704MEDIUMKeycloak: keycloak: privilege escalation due to oversized subject_token jwtEPSS 0.3%CVE-2025-14083LOWKeycloak-server: keycloak: improper access control in admin rest api leads to information disclosureEPSS 0.3%CVE-2026-3190MEDIUMKeycloak: keycloak: information disclosure via improper role enforcement in uma 2.0 protection apiEPSS 0.3%CVE-2026-4633LOWKeycloak: keycloak: user enumeration via differential error messagesEPSS 0.3%CVE-2025-0677MEDIUMGrub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinksEPSS 0.3%CVE-2022-4975HIGHRhacs: cross-site scripting in portalEPSS 0.3%CVE-2024-1488HIGHUnbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalationEPSS 0.3%CVE-2023-3164MEDIUMHeap-buffer-overflow in extractimagesection()EPSS 0.3%CVE-2026-12549MEDIUMLibsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserverEPSS 0.3%CVE-2025-14777MEDIUMKeycloak: keycloak idor in realm client creating/deletingEPSS 0.3%CVE-2023-38471MEDIUMReachable assertion in dbus_set_host_nameEPSS 0.3%