Vulnerabilities in Red Hat

1,512 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2024-45783MEDIUMGrub2: fs/hfs+: refcount can be decremented twiceEPSS 0.2%CVE-2025-4374MEDIUMQuay: incorrect privilege assignmentEPSS 0.2%CVE-2025-0736MEDIUMOrg.infinispan-infinispan-parent: exposure of sensitive information in application logsEPSS 0.2%CVE-2026-40916MEDIUMGimp: gimp: denial of service due to stack buffer overflow in tim image loaderEPSS 0.2%CVE-2023-3397HIGHKernel: slab-use-after-free write in txend due to race conditionEPSS 0.2%CVE-2026-1764MEDIUMLocalsearch: tracker-miners: gnome localsearch mp3 extractor: heap buffer overflow leads to denial of service or information disclosure when parsing mp3 filesEPSS 0.2%CVE-2023-4394MEDIUMMemory leak in btrfs_get_dev_args_from_path()EPSS 0.2%CVE-2025-57849MEDIUMFuse: privilege escalation via excessive /etc/passwd permissionsEPSS 0.2%CVE-2019-10157MEDIUMIt was found that Keycloak's Node.js adapter before version 4.8.3 did not properly verify the web token received from the server in its backEPSS 0.2%CVE-2026-3632LOWLibsoup: libsoup: http smuggling and server-side request forgery via malformed hostnamesEPSS 0.2%CVE-2023-26590MEDIUMFloating point exception in src/aiff.cEPSS 0.2%CVE-2025-7738MEDIUMPython3.11-django-ansible-base: sensitive authenticator secrets returned in clear text via api in aapEPSS 0.2%CVE-2026-53701MEDIUMGstreamer1-plugins-bad-free: gstreamer: out-of-bounds write in h.266/vvc pps picture partition parserEPSS 0.2%CVE-2026-9798MEDIUMKeycloak: keycloak: brute-force protection bypass in ciba flowEPSS 0.2%CVE-2024-3716MEDIUMForeman-installer: candlepin database password being leaked to local users via the process listEPSS 0.2%CVE-2025-7195MEDIUMOperator-sdk: privilege escalation due to incorrect permissions of /etc/passwdEPSS 0.2%CVE-2026-48864HIGHLibsolv: heap buffer overflow in libsolv repopagestore via unchecked decompression of malicious .solv page dataEPSS 0.2%CVE-2026-12726MEDIUMAwx: automation-controller: awx: github webhook second-order ssrf via unvalidated statuses_url exfiltrates pat credentialEPSS 0.2%CVE-2024-9979MEDIUMPyo3: risk of use-after-free in `borrowed` reads from python weak referencesEPSS 0.2%CVE-2026-4628MEDIUMKeycloak: org.keycloak.authorization: keycloak: unauthorized resource modification due to improper access controlEPSS 0.2%