Vulnerabilidades en RED HAT

1504 resultados
CVE-2026-9087MEDIUMKeycloak: cross-session email verification proof not bound to upstream identity in first-broker-loginEPSS 0.3%CVE-2026-1467MEDIUMLibsoup: libsoup: http header injection via specially crafted urls when an http proxy is configuredEPSS 0.3%CVE-2024-43168MEDIUMUnbound: heap-buffer-overflow in unboundEPSS 0.3%CVE-2025-0677MEDIUMGrub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinksEPSS 0.3%CVE-2024-8443LOWLibopensc: heap buffer overflow in openpgp driver when generating keyEPSS 0.3%CVE-2019-19339MEDIUMIt was found that the Red Hat Enterprise Linux 8 kpatch update did not include the complete fix for CVE-2018-12207. A flaw was found in the EPSS 0.3%CVE-2023-6679MEDIUMKernel: null pointer dereference in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.cEPSS 0.3%CVE-2025-4382MEDIUMGrub2: grub allow access to encrypted device through cli once root device is unlocked via tpmEPSS 0.3%CVE-2025-4476MEDIUMLibsoup: null pointer dereference in libsoup may lead to denial of serviceEPSS 0.3%CVE-2026-55654LOWOpenssh: heap out-of-bounds read in red hat enterprise linux versions of openssh gssapi indicator cleanup due to missing null sentinel terminationEPSS 0.3%CVE-2024-0646HIGHKernel: ktls overwrites readonly memory pages when using function splice with a ktls socket as destinationEPSS 0.3%CVE-2026-0871MEDIUMOrg.keycloak/keycloak-services: keycloak: unauthorized modification of unmanaged user attributes by administratorsEPSS 0.3%CVE-2026-52718MEDIUMGstreamer1-plugins-bad-free: gstreamer: denial of service via av1 tile_list_obu parser byte/bit confusionEPSS 0.3%CVE-2025-13601HIGHGlib: integer overflow in in g_escape_uri_string()EPSS 0.3%CVE-2025-14443MEDIUMOse-openshift-apiserver: openshift api server: server-side request forgery (ssrf) vulnerability in imagestreamimport mechanismEPSS 0.3%CVE-2023-38473MEDIUMReachable assertion in avahi_alternative_host_nameEPSS 0.3%CVE-2023-38470MEDIUMReachable assertion in avahi_escape_labelEPSS 0.3%CVE-2023-38472MEDIUMReachable assertion in avahi_rdata_parseEPSS 0.3%CVE-2023-38469MEDIUMReachable assertion in avahi_dns_packet_append_recordEPSS 0.3%CVE-2026-9802MEDIUMKeycloak: keycloak: unauthorized account access via replayed refresh tokens after cluster restartEPSS 0.3%