Vulnerabilities in Red Hat

1,512 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2026-3633LOWLibsoup: libsoup: header and http request injection via crlf injectionEPSS 0.2%CVE-2025-5278MEDIUMCoreutils: heap buffer under-read in gnu coreutils sort via key specificationEPSS 0.2%CVE-2024-0775MEDIUMKernel: use-after-free while changing the mount option in __ext4_remount leadingEPSS 0.2%CVE-2024-12125HIGH3scale-porta: readonly fields not validated server-sideEPSS 0.2%CVE-2023-1386LOWQemu: 9pfs: suid/sgid bits not dropped on file writeEPSS 0.2%CVE-2026-0967LOWLibssh: libssh: denial of service via inefficient regular expression processingEPSS 0.2%CVE-2026-0598MEDIUMAnsible-lightspeed: broken object level authorization leading to cross-user ai conversation context injection in ansible lightspeed apiEPSS 0.2%CVE-2023-4133MEDIUMKernel: cxgb4: use-after-free in ch_flower_stats_cb()EPSS 0.2%CVE-2025-46398MEDIUMXfig: fig2dev stack-overflow via read_objectsEPSS 0.2%CVE-2023-4385MEDIUMKernel: jfs: null pointer dereference in dbfree()EPSS 0.2%CVE-2024-13484HIGHOpenshift-gitops-operator-container: namespace isolation breakEPSS 0.2%CVE-2025-8114MEDIUMLibssh: null pointer dereference in libssh kex session id calculationEPSS 0.2%CVE-2025-5962HIGHRhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulationEPSS 0.2%CVE-2025-11393HIGHInsights-runtimes-tech-preview/runtimes-inventory-rhel8-operator: improper proxy configuration allows unauthorized administrative commandsEPSS 0.2%CVE-2026-9791MEDIUMKeycloak-rhel9: organization data leak after feature disabled in keycloakEPSS 0.2%CVE-2025-11429MEDIUMKeycloak-server: too long and not settings compliant sessionEPSS 0.2%CVE-2026-9689MEDIUMKeycloak: org.keycloak.protocol.oidc: http parameter pollution in oidc redirect uri allows response parameter duplication - #ghi-604EPSS 0.2%CVE-2023-4910MEDIUM3scale-admin-portal: logged out users tokens can be accessedEPSS 0.2%CVE-2026-11791MEDIUM389-ds-base: 389-ds-base: use-after-free in schema reload via attr_syntax_swap_ht()EPSS 0.2%CVE-2022-3466MEDIUMCri-o: security regression of cve-2022-27652EPSS 0.2%