Vulnerabilities in Red Hat

1,512 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2023-3674LOWKeylime: attestation failure when the quote's signature does not validateEPSS 0.2%CVE-2025-9820MEDIUMGnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() functionEPSS 0.2%CVE-2023-6725MEDIUMTripleo-ansible: bind keys are world readableEPSS 0.2%CVE-2024-8612LOWQemu-kvm: information leak in virtio devicesEPSS 0.2%CVE-2024-45775MEDIUMGrub2: commands/extcmd: missing check for failed allocationEPSS 0.2%CVE-2025-12150LOWOrg.keycloak/keycloak-services: webauthn attestation statement verification bypassEPSS 0.2%CVE-2026-55653MEDIUMOpenssh: double free in red hat enterprise linux versions of openssh dh-gex client path during fips known-group validation leads to client-side denial of serviceEPSS 0.2%CVE-2026-11986MEDIUMKeycloak-rest-admin-ui-ext: authorization bypass vulnerability in the admin-ui-ext bulk role-mapping-delete endpoints of keycloakEPSS 0.2%CVE-2023-6917MEDIUMPcp: unsafe use of directories allows pcp to root privilege escalationEPSS 0.2%CVE-2025-46399MEDIUMXfig: transfig: fig2dev segmentation fault vulnerabilityEPSS 0.2%CVE-2025-5417MEDIUMRhdh: red hat developer hub user permissionsEPSS 0.2%CVE-2025-46400MEDIUMXfig: fig2dev segmentation fault in read_arcobjectEPSS 0.2%CVE-2025-49178MEDIUMXorg-x11-server-xwayland: xorg-x11-server: tigervnc: unprocessed client request due to bytes to ignoreEPSS 0.2%CVE-2023-5158MEDIUMPossible dos from guest to host invringh_kiov_advance in vhost driver at drivers/vhost/vringh.cEPSS 0.2%CVE-2025-7777MEDIUMMirror-registry: host header injection in mirror-registryEPSS 0.2%CVE-2026-12515MEDIUMKatello: missing repository authorization in content_uploads exposes cross-product content existenceEPSS 0.2%CVE-2026-40918MEDIUMGimp: gimp: denial of service via crafted pvr image fileEPSS 0.2%CVE-2026-10078LOWQuay/config-tool: quay/config-tool: gitlab oauth client_secret exposed in url querystringEPSS 0.2%CVE-2024-4840MEDIUMRhosp-director: cleartext passwords exposed in logsEPSS 0.2%CVE-2024-45782HIGHGrub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)EPSS 0.2%