Vulnerabilidades em RED HAT
1.504 resultadosCVE-2026-11793MEDIUM389-ds-base: 389-ds-base: stack buffer overflow in checkprefix() algorithm id parsingEPSS 0.3%CVE-2026-3009HIGHOrg.keycloak/keycloak-services: improper enforcement of disabled identity provider in identitybrokerservice (authentication bypass)EPSS 0.3%CVE-2024-4467HIGHQemu-kvm: 'qemu-img info' leads to host file read/writeEPSS 0.3%CVE-2026-3911LOWOrg.keycloak.services.resources.admin.userresource: keycloak: information disclosure of disabled user attributes via administrative endpointEPSS 0.3%CVE-2026-3234MEDIUMMod_proxy_cluster: mod_proxy_cluster: response body corruption via crlf injectionEPSS 0.3%CVE-2025-60019LOWGlib-networking: uninitialized memory dereferences on glib-networking through glib-networking/tls/openssl/gtlsbio.c via g_tls_bio_new_from_iostream() and g_tls_bio_new_from_datagram_based()EPSS 0.3%CVE-2026-40919MEDIUMGimp: gimp: denial of service via specially crafted seattle filmworks fileEPSS 0.3%CVE-2026-9794MEDIUMKeycloak: keycloak: information disclosure via saml ecp endpointEPSS 0.3%CVE-2025-2842MEDIUMTempo-operator: tempo operator token exposition lead to read sensitive dataEPSS 0.3%CVE-2024-49393MEDIUMMutt: neomutt: to and cc email header fields are not protected by cryptographic signingEPSS 0.3%CVE-2023-6693MEDIUMQemu: virtio-net: stack buffer overflow in virtio_net_flush_tx()EPSS 0.3%CVE-2023-4042MEDIUMGhostscript: incomplete fix for cve-2020-16305EPSS 0.3%CVE-2026-2733LOWOrg.keycloak/keycloak-services: keycloak: missing check on disabled client for docker registry protocolEPSS 0.3%CVE-2024-49394MEDIUMMutt: neomutt: in-reply-to email header field it not protected by cryptograpic signingEPSS 0.3%CVE-2023-6236HIGHEap: oidc app attempting to access the second tenant, the user should be prompted to logEPSS 0.3%CVE-2024-2905MEDIUMRpm-ostree: world-readable /etc/shadow fileEPSS 0.3%CVE-2019-19335MEDIUMDuring installation of an OpenShift 4 cluster, the `openshift-install` command line tool creates an `auth` directory, with `kubeconfig` and EPSS 0.3%CVE-2025-5914HIGHLibarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.cEPSS 0.3%CVE-2026-1489MEDIUMGlib: glib: memory corruption via integer overflow in unicode case conversionEPSS 0.3%CVE-2026-42012HIGHGnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sansEPSS 0.3%