Vulnerabilidades en Red Hat
1478 resultadosCVE-2026-3238HIGHSamba: denial of service against ad dc wins serverEPSS 2.6%CVE-2020-1714HIGHA flaw was found in Keycloak before version 11.0.0, where the code base contains usages of ObjectInputStream without type checks. This flaw EPSS 2.6%CVE-2018-10926HIGHA flaw was found in RPC request using gfs3_mknod_req supported by glusterfs server. An authenticated attacker could use this flaw to write fEPSS 2.6%CVE-2023-32250CRITICALSession race condition remote code execution vulnerabilityEPSS 2.6%CVE-2020-10696HIGHA path traversal flaw was found in Buildah in versions before 1.14.5. This flaw allows an attacker to trick a user into building a maliciousEPSS 2.6%CVE-2023-5870LOWPostgresql: role pg_signal_backend can signal certain superuser processes.EPSS 2.6%CVE-2026-4408CRITICALSamba: remote code execution in samrEPSS 2.5%CVE-2023-32258HIGHSession race condition remote code execution vulnerabilityEPSS 2.5%CVE-2016-9578HIGHA vulnerability was discovered in SPICE before 0.13.90 in the server's protocol handling. An attacker able to connect to the SPICE server coEPSS 2.5%CVE-2019-14812HIGHA flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privilegEPSS 2.5%CVE-2018-16876LOWansible before versions 2.5.14, 2.6.11, 2.7.5 is vulnerable to a information disclosure flaw in vvv+ mode with no_log on that can lead to leEPSS 2.5%CVE-2016-8614MEDIUMA flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary toEPSS 2.5%CVE-2017-2582MEDIUMIt was found that while parsing the SAML messages the StaxParserUtil class of keycloak before 2.5.1 replaces special strings for obtaining aEPSS 2.5%CVE-2018-10914MEDIUMIt was found that an attacker could issue a xattr request via glusterfs FUSE to cause gluster brick process to crash which will result in a EPSS 2.4%CVE-2023-3961CRITICALSamba: smbd allows client access to unix domain sockets on the file system as rootEPSS 2.4%CVE-2020-10749MEDIUMA vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, that allows malicious containers in KuberneteEPSS 2.4%CVE-2016-0750MEDIUMThe hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message contents in certain events. A maliciousEPSS 2.4%CVE-2025-5318HIGHLibssh: out-of-bounds read in sftp_handle()EPSS 2.4%CVE-2023-32257HIGHSession race condition remote code execution vulnerabilityEPSS 2.4%CVE-2018-10893HIGHMultiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames. A malicious server EPSS 2.4%