Vulnerabilidades en RED HAT
1478 resultadosCVE-2023-3153MEDIUMService monitor mac flow is not rate limitedEPSS 1.0%CVE-2019-10213MEDIUMOpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given operatorEPSS 1.0%CVE-2024-9341MEDIUMPodman: buildah: cri-o: fips crypto-policy directory mounting issue in containers/common go libraryEPSS 1.0%CVE-2023-39197MEDIUMKernel: dccp: conntrack out-of-bounds read in nf_conntrack_dccp_packet()EPSS 1.0%CVE-2020-10712HIGHA flaw was found in OpenShift Container Platform version 4.1 and later. Sensitive information was found to be logged by the image registry oEPSS 1.0%CVE-2023-3637MEDIUMOpenstack-neutron: unrestricted creation of security groups (fix for cve-2022-3277)EPSS 1.0%CVE-2023-6240MEDIUMKernel: marvin vulnerability side-channel leakage in the rsa decryption operationEPSS 1.0%CVE-2018-10934MEDIUMA cross-site scripting (XSS) vulnerability was found in the JBoss Management Console versions before 7.1.6.CR1, 7.1.6.GA. Users with roles tEPSS 1.0%CVE-2026-42010HIGHGnutls: gnutls: authentication bypass via nul character in usernameEPSS 1.0%CVE-2023-39418LOWPostgresql: merge fails to enforce update or select row security policiesEPSS 1.0%CVE-2023-0462HIGHArbitrary code execution through yaml global parametersEPSS 1.0%CVE-2019-10177MEDIUMA stored cross-site scripting (XSS) vulnerability was found in the PDF export component of CloudForms, versions 5.9 and 5.10, due to user inEPSS 1.0%CVE-2023-4004HIGHKernel: netfilter: use-after-free due to improper element removal in nft_pipapo_remove()EPSS 1.0%CVE-2025-6018HIGHPam-config: lpe from unprivileged to allow_active in pamEPSS 1.0%CVE-2023-1584HIGHQuarkus-oidc: id and access tokens leak via the authorization code flowEPSS 1.0%CVE-2022-3916MEDIUMKeycloak: session takeover with oidc offline refreshtokensEPSS 1.0%CVE-2023-6291HIGHKeycloak: redirect_uri validation bypassEPSS 0.9%CVE-2026-1761HIGHLibsoup: stack-based buffer overflow in libsoup multipart response parsingmultipart http responseEPSS 0.9%CVE-2020-14341—The "Test Connection" available in v7.x of the Red Hat Single Sign On application console can permit an authorized user to cause SMTP connecEPSS 0.9%CVE-2014-6275—FusionForge before 5.3.2 use scripts that run under the shared Apache user, which is also used by project homepages by default. If project wEPSS 0.9%