Vulnerabilities in RED HAT

1,513 results
CVE-2025-0754MEDIUMEnvoyproxy: openshift service mesh 2.6.3 and 2.5.6 envoy header handling allows log injection and potential spoofingEPSS 0.3%CVE-2023-3899HIGHSubscription-manager: inadequate authorization of com.redhat.rhsm1 d-bus interface allows local users to modify configurationEPSS 0.3%CVE-2023-4959MEDIUMQuay: cross-site request forgery (csrf) on config-editor pageEPSS 0.3%CVE-2026-10118HIGHPoppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplicationEPSS 0.3%CVE-2023-6176MEDIUMKernel: local dos vulnerability in scatterwalk_copychunksEPSS 0.3%CVE-2025-0684MEDIUMGrub2: reiserfs: integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading dataEPSS 0.3%CVE-2023-3301MEDIUMTriggerable assertion due to race condition in hot-unplugEPSS 0.3%CVE-2025-46397HIGHXfig: xfig: stack-overflow allows possible code execution via local input manipulationEPSS 0.3%CVE-2026-3429MEDIUMOrg.keycloak.services.resources.account: improper access control leading to mfa deletion and account takeover in keycloak account rest apiEPSS 0.3%CVE-2026-12969MEDIUMDnsmasq: dnsmasq: out-of-bounds read in find_soa() due to missing extrabytes validationEPSS 0.3%CVE-2024-6519HIGHQemu: scsi: lsi53c895a: use-after-free local privilege escalation vulnerabilityEPSS 0.3%CVE-2026-4325MEDIUMKeycloak: keycloak: replay of action tokens via improper handling of single-use entriesEPSS 0.3%CVE-2026-34003HIGHXorg: xwayland: x.org x server: information exposure and denial of service via out-of-bounds memory accessEPSS 0.3%CVE-2024-2496MEDIUMLibvirt: null pointer dereference in udevconnectlistallinterfaces()EPSS 0.3%CVE-2023-4459MEDIUMKernel: vmxnet3: null pointer dereference in vmxnet3_rq_cleanup()EPSS 0.2%CVE-2026-12993MEDIUMApicurio/apicurio-registry: apicurio-registry: xml entity-expansion denial of service via internal dtd subsetEPSS 0.2%CVE-2026-14258MEDIUMDhcpcd: dhcpcd infinite loop and out-of-bounds read via zero-length ipv6 nd option in router advertisement handlingEPSS 0.2%CVE-2024-9902MEDIUMAnsible-core: ansible-core user may read/write unauthorized contentEPSS 0.2%CVE-2026-5138MEDIUMForeman: foreman: information disclosure via improper validation of nested request parametersEPSS 0.2%CVE-2024-0443MEDIUMKernel: blkio memory leakage due to blkcg and some blkgs are not freed after they are made offline.EPSS 0.2%