Vulnerabilidades em RED HAT
1.512 resultadosCVE-2026-13201HIGHKubevirt: virt-handler-rhel9: kubevirt: safepath symlink following in virt-handler enables notify socket hijacking and node-level vm disruptionEPSS 0.1%CVE-2026-12892MEDIUMGstreamer1-plugins-bad: gstreamer1-plugins-bad: 1-byte heap out-of-bounds read in h.264 nal extension slice parserEPSS 0.1%CVE-2025-6017MEDIUMRhacm: users with clusterreader role can see credentials from managed-clustersEPSS 0.1%CVE-2026-57965MEDIUMSpice-vdagent: integer overflow in udscs_write() leading to heap buffer overflowEPSS 0.1%CVE-2026-6420MEDIUMKeylime: keylime: security bypass due to hardcoded tpm quote nonceEPSS 0.1%CVE-2026-52902MEDIUMAwxkit: path traversal via yaml !include directiveEPSS 0.1%CVE-2026-48914MEDIUMQemu-kvm: heap buffer overflow in virtio-blk scsi request handlingEPSS 0.1%CVE-2025-61664MEDIUMGrub2: missing unregister call for normal_exit command may lead to use-after-freeEPSS 0.1%CVE-2026-12505HIGHCifs-utils: local privilege escalation via forged cifs.spnego key description in cifs.upcallEPSS 0.1%CVE-2026-9793MEDIUMKeycloak: keycloak: security policy bypass in jwe-encrypted request object processingEPSS 0.1%CVE-2026-13757MEDIUMP11-kit: stack exhaustion via unbounded recursion in rpc attribute parsingEPSS 0.1%CVE-2026-4948MEDIUMFirewalld: firewalld: local unprivileged user can modify firewall state due to d-bus setter mis-authorizationEPSS 0.1%CVE-2026-10805MEDIUMNetworkmanager: networkmanager: local privilege escalation via malformed mud urls in dhclient backendEPSS 0.1%CVE-2025-14946MEDIUMLibnbd: libnbd: arbitrary code execution via ssh argument injection through a malicious uriEPSS 0.1%CVE-2026-54231MEDIUMAbrt: unsanitized systemd journal content written to dump directory files enables content injectionEPSS 0.1%CVE-2025-14010MEDIUMAnsible-collection-community-general: ansible-collection-community-general: keycloak user module leaks credentials in verbose outputEPSS 0.1%CVE-2026-2243MEDIUMQemu-kvm: heap buffer out-of-bounds read in vmdk compressed grain parsingEPSS 0.1%CVE-2025-57851MEDIUMMce: privilege escalation via excessive /etc/passwd permissionsEPSS 0.1%CVE-2026-4740HIGHRhacm: open cluster management (ocm): cross-cluster privilege escalation via improper kubernetes client certificate renewal validationEPSS 0.1%CVE-2025-61663MEDIUMGrub2: missing unregister call for normal commands may lead to use-after-freeEPSS 0.1%