Vulnerabilities in Red Hat

1,518 results
Vexday analysis

Com 1.477 CVEs catalogadas e 232 surgidas apenas nos últimos 90 dias, o volume de vulnerabilidades associadas ao Red Hat exige monitoramento contínuo. A taxa de exploração ativa está abaixo da média geral do catálogo, com apenas 1 CVE confirmada no CISA KEV — a CVE-2023-4911, que apresenta EPSS de 0,7861, indicando probabilidade elevada de exploração e merecendo atenção prioritária de equipes de resposta. Das 34 vulnerabilidades de severidade crítica, 18 contam com prova de conceito pública disponível, o que reduz a barreira técnica para exploração e aumenta o risco operacional. O tipo de falha mais recorrente é CWE-125 (leitura fora dos limites), padrão que frequentemente viabiliza vazamento de dados ou corrupção de memória e deve orientar revisões de hardening e priorização de patches.

CVE-2020-1708HIGHIt has been found in openshift-enterprise version 3.11 and all openshift-enterprise versions from 4.1 to, including 4.3, that multiple contaEPSS 0.3%CVE-2023-32627MEDIUMFloating point exception in src/voc.cEPSS 0.3%CVE-2017-2614MEDIUMWhen updating a password in the rhvm database the ovirt-aaa-jdbc-tool tools before 1.1.3 fail to correctly check for the current password ifEPSS 0.3%CVE-2026-52719HIGHGstreamer1-plugins-bad-free: gstreamer: out-of-bounds read via jpeg segment length validation in va decoderEPSS 0.3%CVE-2025-49175MEDIUMXorg-x11-server-xwayland: xorg-x11-server: tigervnc: out-of-bounds read in x rendering extension animated cursorsEPSS 0.3%CVE-2025-49179HIGHXorg-x11-server-xwayland: xorg-x11-server: tigervnc: integer overflow in x record extensionEPSS 0.3%CVE-2024-4028LOWKeycloak-core: stored xss in keycloak when creating a items in admin consoleEPSS 0.3%CVE-2024-3446HIGHQemu: virtio: dma reentrancy issue leads to double free vulnerabilityEPSS 0.3%CVE-2025-25207MEDIUMRhcl: authpolicy callbacks result in denial of service in authorino severityEPSS 0.3%CVE-2023-3106MEDIUMKernel: netlink socket crash (null pointer deref) in netlink_dump functionEPSS 0.3%CVE-2024-9671MEDIUMSystem: pdf invoices of the developer users can be seen if the url is knownEPSS 0.3%CVE-2026-12891MEDIUMGstreamer1-plugins-bad: gstreamer1-plugins-bad: global buffer overflow (oob read) in h.266/vvc vui parameter parserEPSS 0.3%CVE-2023-5972HIGHKernel: the nfta_inner_num and nfta_expr_name netlink attributes accessed without checking its presence in nft_inner.cEPSS 0.3%CVE-2025-3576MEDIUMKrb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisionsEPSS 0.3%CVE-2023-42756MEDIUMKernel: netfilter: race condition between ipset_cmd_add and ipset_cmd_swapEPSS 0.3%CVE-2026-2366LOWKeycloak: keycloak: information disclosure via authorization bypass in admin apiEPSS 0.3%CVE-2026-56208HIGHLibaom: libaom: heap buffer overflow in av1 encoder first-pass stats buffer via lap modeEPSS 0.3%CVE-2020-1704HIGHAn insecure modification vulnerability in the /etc/passwd file was found in all versions of OpenShift ServiceMesh (maistra) before 1.0.8 in EPSS 0.3%CVE-2024-4029MEDIUMWildfly: no timeout for eap management interface may lead to denial of service (dos)EPSS 0.3%CVE-2026-1531HIGHForeman-kubevirt: foreman_kubevirt: man-in-the-middle due to insecure default ssl verificationEPSS 0.3%