Vulnerabilities in Red Hat

1,512 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2023-4732MEDIUMKernel: race between task migrating pages and another task calling exit_mmap to release those same pages getting invalid opcode bug in include/linux/swapops.hEPSS 0.2%CVE-2026-11785MEDIUM389-ds-base: 389-ds-base: partial stack address information leak via ber_printf type confusion in sso token handlerEPSS 0.2%CVE-2026-7309MEDIUMOpenshift-controller-manager: openshift container platform: information disclosure via environment variable injectionEPSS 0.2%CVE-2026-5673MEDIUMLibtheora: libtheora: denial of service or information disclosure via malformed avi file processingEPSS 0.2%CVE-2025-4877MEDIUMLibssh: write beyond bounds in binary to base64 conversion functionsEPSS 0.2%CVE-2026-11787MEDIUM389-ds-base: 389-ds-base: heap buffer over-read in ldap_utf8prev() via str2simple filter parsingEPSS 0.2%CVE-2025-53862LOWAap: aap-gateway: automation-hub: sensitive information disclosureEPSS 0.2%CVE-2025-13763MEDIUMLibopensc: opensc: multiple uses of uninitialized variableEPSS 0.2%CVE-2026-3441MEDIUMBinutils: gnu binutils: information disclosure via specially crafted xcoff object fileEPSS 0.2%CVE-2025-14104MEDIUMUtil-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernamesEPSS 0.2%CVE-2026-9799MEDIUMKeycloak: keycloak: unauthorized access to resources via uma permission ticket bypassEPSS 0.2%CVE-2026-13325HIGHVirt-handler-rhel9: kubevirt: kubevirt: disabletls migration setting removes authentication, exposing unauthenticated virtqemud proxy on all interfacesEPSS 0.2%CVE-2026-6846HIGHBinutils: binutils: arbitrary code execution via malformed xcoff object file processingEPSS 0.2%CVE-2025-48798HIGHGimp: multiple use after free in xcf parserEPSS 0.2%CVE-2025-61661MEDIUMGrub2: grub2: out-of-bounds write via malicious usb deviceEPSS 0.2%CVE-2026-4647MEDIUMBinutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd libraryEPSS 0.2%CVE-2026-10840HIGHOpenshift-pipelines-operator-rh: openshift-pipelines-operator: tekton-scheduler-rolebinding grants system:authenticated write access to kueue and cert-manager resourcesEPSS 0.2%CVE-2025-57850MEDIUMCodeready-ws: privilege escalation via excessive /etc/passwd permissionsEPSS 0.2%CVE-2025-9909MEDIUMAap-gateway: improper path validation in gateway allows credential exfiltrationEPSS 0.2%CVE-2025-9907MEDIUMEvent-driven-ansible: event stream test mode exposes sensitive headers in aap edaEPSS 0.2%