Vulnerabilidades en RED HAT
1490 resultadosCVE-2023-4692HIGHGrub2: out-of-bounds write at fs/ntfs.c may lead to unsigned code executionEPSS 0.5%CVE-2023-5574HIGHXorg-x11-server: use-after-free bug in damagedestroyEPSS 0.5%CVE-2024-3049MEDIUMBooth: specially crafted hash can lead to invalid hmac being accepted by booth serverEPSS 0.5%CVE-2018-16859MEDIUMExecution of Ansible playbooks on Windows platforms with PowerShell ScriptBlock logging and Module logging enabled can allow for 'become' paEPSS 0.5%CVE-2023-4958MEDIUMStackrox: missing http security headers allows for clickjacking in web uiEPSS 0.5%CVE-2010-0737—A missing permission check was found in The CLI in JBoss Operations Network before 2.3.1 does not properly check permissions, which allows JEPSS 0.5%CVE-2023-4320HIGHSatellite: arithmetic overflow in satelliteEPSS 0.5%CVE-2023-39327MEDIUMOpenjpeg: malicious files can cause the program to enter a large loopEPSS 0.5%CVE-2024-6535MEDIUMSkupper: potential authentication bypass to skupper console via forged cookiesEPSS 0.5%CVE-2025-10894CRITICALNx: nx/devkit: malicious versions of nx and plugins published to npmEPSS 0.5%CVE-2026-3118MEDIUMRhdh: graphql injection leading to platform-wide denial of service (dos) in rh developer hub orchestrator pluginEPSS 0.5%CVE-2025-7493CRITICALFreeipa: idm: privilege escalation from host to domain admin in freeipaEPSS 0.5%CVE-2023-2422MEDIUMKeycloak: oauth client impersonationEPSS 0.5%CVE-2024-3622HIGHMirror-registry: plain-text default csrf secret keyEPSS 0.5%CVE-2019-3828MEDIUMAnsible fetch module before versions 2.5.15, 2.6.14, 2.7.8 has a path traversal vulnerability which allows copying and overwriting files outEPSS 0.5%CVE-2023-6606HIGHKernel: out-of-bounds read vulnerability in smbcalcsizeEPSS 0.5%CVE-2024-50312MEDIUMGraphql: information disclosure via graphql introspection in openshiftEPSS 0.5%CVE-2026-3833MEDIUMGnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparisonEPSS 0.5%CVE-2025-10622HIGHForeman: os command injection via ct_location and fcct_location parametersEPSS 0.5%CVE-2023-4380MEDIUMPlatform: token exposed at importing projectEPSS 0.5%