Vulnerabilities in Red Hat

1,512 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2023-6238MEDIUMKernel: nvme: memory corruption via unprivileged user passthroughEPSS 0.3%CVE-2025-8283LOWNetavark: podman: netavark may resolve hostnames to unexpected hostsEPSS 0.3%CVE-2023-0160MEDIUMPossibility of deadlock in libbpf function sock_hash_delete_elemEPSS 0.3%CVE-2025-25208MEDIUMRhcl: authorino denial of service through authpolicy with sharedsecretref severityEPSS 0.3%CVE-2024-9683MEDIUMQuay: quay allows successful authentication with trucated version of the passwordEPSS 0.3%CVE-2025-60018MEDIUMGlib-networking: out of bound reads on glib-networking through tls/openssl/gtlscertificate-openssl.c via "g_tls_certificate_openssl_get_property()"EPSS 0.3%CVE-2026-52722HIGHGstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handlingEPSS 0.3%CVE-2023-3355MEDIUMNull pointer dereference in submit_lookup_cmds() in drivers/gpu/drm/msm/msm_gem_submit.cEPSS 0.3%CVE-2024-52336HIGHTuned: `script_pre` and `script_post` options allow to pass arbitrary scripts executed by rootEPSS 0.3%CVE-2024-45618LOWLibopensc: uninitialized values after incorrect or missing checking return values of functions in pkcs15initEPSS 0.3%CVE-2025-14778MEDIUMKeycloak: incorrect ownership checks in /uma-policy/EPSS 0.3%CVE-2025-14243MEDIUMMirror-registry: openshift mirror registry: user enumeration via authentication error messagesEPSS 0.3%CVE-2024-9407MEDIUMBuildah: podman: improper input validation in bind-propagation option of dockerfile run --mount instructionEPSS 0.3%CVE-2024-2700HIGHQuarkus-core: leak of local configuration properties into quarkus applicationsEPSS 0.3%CVE-2025-1118MEDIUMGrub2: commands/dump: the dump command is not in lockdown when secure boot is enabledEPSS 0.3%CVE-2024-8354MEDIUMQemu-kvm: usb: assertion failure in usb_ep_get()EPSS 0.3%CVE-2023-32253MEDIUMKernel: deadlock in ksmbd_find_crypto_ctx()EPSS 0.3%CVE-2024-45770MEDIUMPcp: pmpost symlink attack allows escalating pcp to root userEPSS 0.3%CVE-2025-2843HIGHObservability-operator: observability operator privilege escalationEPSS 0.3%CVE-2024-1013HIGHUnixodbc: out of bounds stack write due to pointer-to-integer types conversionEPSS 0.3%