Vulnerabilidades em RED HAT
1.519 resultadosCVE-2026-43958HIGHRrdtool: rrdtool: stack buffer overflow allows local code execution or denial of serviceEPSS 0.1%CVE-2026-4897MEDIUMPolkit: polkit: denial of service via unbounded input processing through standard inputEPSS 0.1%CVE-2026-13595MEDIUMUtil-linux: util-linux: heap use-after-free in libblkid nested partition probingEPSS 0.1%CVE-2025-14821HIGHLibssh: libssh: insecure default configuration leads to local man-in-the-middle attacks on windowsEPSS 0.1%CVE-2026-4367MEDIUMLibxpm: libxpm: denial of service via out-of-bounds read in xpm file parsingEPSS 0.1%CVE-2025-12390MEDIUMOrg.keycloak.protocol.oidc.endpoints.logoutendpoint: offline session takeover due to reused authentication session idEPSS 0.1%CVE-2026-11819MEDIUMCommunity.general: community.general keyring_info — os keyring passphrase returned in plaintextEPSS 0.1%CVE-2025-54770MEDIUMGrub2: use-after-free in net_set_vlanEPSS 0.1%CVE-2026-11837HIGHAnsible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chownEPSS 0.1%CVE-2025-54771MEDIUMGrub2: use-after-free in grub_file_close()EPSS 0.1%CVE-2026-50262MEDIUMXorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: out-of-bounds read/write in glx changedrawableattributesEPSS 0.1%CVE-2026-3195HIGHQemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb (incomplete fix for cve-2024-7730)EPSS 0.1%CVE-2026-12892MEDIUMGstreamer1-plugins-bad: gstreamer1-plugins-bad: 1-byte heap out-of-bounds read in h.264 nal extension slice parserEPSS 0.1%CVE-2026-13201HIGHKubevirt: virt-handler-rhel9: kubevirt: safepath symlink following in virt-handler enables notify socket hijacking and node-level vm disruptionEPSS 0.1%CVE-2025-6017MEDIUMRhacm: users with clusterreader role can see credentials from managed-clustersEPSS 0.1%CVE-2026-57965MEDIUMSpice-vdagent: integer overflow in udscs_write() leading to heap buffer overflowEPSS 0.1%CVE-2026-48914MEDIUMQemu-kvm: heap buffer overflow in virtio-blk scsi request handlingEPSS 0.1%CVE-2026-6420MEDIUMKeylime: keylime: security bypass due to hardcoded tpm quote nonceEPSS 0.1%CVE-2026-52902MEDIUMAwxkit: path traversal via yaml !include directiveEPSS 0.1%CVE-2025-61664MEDIUMGrub2: missing unregister call for normal_exit command may lead to use-after-freeEPSS 0.1%