Vulnerabilidades en RED HAT
1489 resultadosCVE-2025-4948HIGHLibsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoupEPSS 0.6%CVE-2024-0564MEDIUMKernel: max page sharing of kernel samepage merging (ksm) may cause memory deduplicationEPSS 0.6%CVE-2023-3750MEDIUMLibvirt: improper locking in virstoragepoolobjlistsearch may lead to denial of serviceEPSS 0.6%CVE-2019-3884LOWA vulnerability exists in the garbage collection mechanism of atomic-openshift. An attacker able spoof the UUID of a valid object from anothEPSS 0.6%CVE-2023-5367HIGHXorg-x11-server: out-of-bounds write in xichangedeviceproperty/rrchangeoutputpropertyEPSS 0.6%CVE-2025-6395MEDIUMGnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()EPSS 0.6%CVE-2024-4871MEDIUMForeman: host ssh key not being checked in remote executionEPSS 0.6%CVE-2024-7143MEDIUMPulpcore: rbac permissions incorrectly assigned in tasks that create objectsEPSS 0.6%CVE-2018-10854MEDIUMcloudforms version, cloudforms 5.8 and cloudforms 5.9, is vulnerable to a cross-site-scripting. A flaw was found in CloudForms's v2v infrastEPSS 0.6%CVE-2026-0603HIGHOrg.hibernate/hibernate-core: hibernate: information disclosure and data deletion via second-order sql injectionEPSS 0.6%CVE-2024-8447MEDIUMNarayana: deadlock via multiple join requests sent to lra coordinatorEPSS 0.6%CVE-2023-3597MEDIUMKeycloak: secondary factor bypass in step-up authenticationEPSS 0.6%CVE-2020-25655MEDIUMAn issue was discovered in ManagedClusterView API, that could allow secrets to be disclosed to users without the correct permissions. Views EPSS 0.6%CVE-2022-4145MEDIUMContent spoofingEPSS 0.6%CVE-2017-7528MEDIUMAnsible Tower as shipped with Red Hat CloudForms Management Engine 5 is vulnerable to CRLF Injection. It was found that X-Forwarded-For headEPSS 0.6%CVE-2024-0793HIGHKube-controller-manager: malformed hpa v1 manifest causes crashEPSS 0.6%CVE-2018-14620MEDIUMThe OpenStack RabbitMQ container image insecurely retrieves the rabbitmq_clusterer component over HTTP during the build stage. This could poEPSS 0.6%CVE-2025-4953HIGHPodman: build context bind mountEPSS 0.6%CVE-2025-0620MEDIUMSamba: smbd doesn't pick up group membership changes when re-authenticating an expired smb sessionEPSS 0.6%CVE-2024-1979LOWQuarkus: information leak in annotationEPSS 0.6%