SecAlerts
CVE ListPricingSign Up
RedHat logo

RedHat

Security Risk Profile

41
/100
medium

Security Risk Score

Comprehensive risk assessment based on 1000 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from September 6, 2021 to present

1000
Total CVEs
482
Critical+High
20
Exploited
144
Unpatched

Threat Assessment

Avg CVSS
6.8
Base severity
Avg EPSS
1%
Exploit probability
Unpatched
144
Critical/High
Risk Level
41/100
medium
⚠️ 20 Active Exploits 2 Zero-Days🆕 4Fresh (<7d)📈 25 in Last 30 Days

Severity Distribution

Critical
63
High
419
Medium
487
Low
30

Exploit Likelihood

>50% chance
1
20-50%
2
5-20%
1
<5%
230

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
95
2
Use After Free
77
3
Null Pointer Dereference
65
4
Input Validation
47
5
Race Condition
40

Most Affected Products

1. redhat Enterprise Linux1315
2. Linux Linux kernel528
3. Fedoraproject Fedora400
4. Debian Debian Linux244
5. redhat OpenShift Container Platform224

Recent Vulnerabilities

See more →
CVE-2026-50259
CVSS 7.8high

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb setmap request via mapwidths indexing

6/5/2026
CVE-2026-50257
CVSS 7.8high

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free in misyncdestroyfence()

6/5/2026
CVE-2026-50258
CVSS 7.8high

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in xkb key types due to unchecked shift levels

6/5/2026
CVE-2026-50256
CVSS 7.8high

Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: stack buffer overflow in font alias resolution due to libxfont2 name length mismatch

6/5/2026
CVE-2026-10533
CVSS 5.0medium

Openshift: openshift: non-admin user can bypass resourcequota and flood etcd with events causing cluster-wide api degradation

6/1/2026🔧 No Patch
CVE-2026-42965
CVSS 7.7high

Openshift/router: openshift/router: cloud metadata ssrf via fqdn-typed endpointslice bypasses destination validation

5/29/2026🔧 No Patch
CVE-2026-46579
CVSS 7.5high

Openshift/router: openshift/router: mtls client certificate spoofing via unstripped x-ssl-client headers on http frontend

5/29/2026🔧 No Patch
CVE-2026-9801
CVSS 4.9EPSS 0%medium

Keycloak: keycloak: denial of service via malformed ldap password policy response

5/28/2026🔧 No Patch
CVE-2026-9798
CVSS 4.3EPSS 0%medium

Keycloak: keycloak: brute-force protection bypass in ciba flow

5/28/2026🔧 No Patch
CVE-2026-9802
CVSS 6.8EPSS 0%medium

Keycloak: keycloak: unauthorized account access via replayed refresh tokens after cluster restart

5/28/2026🔧 No Patch

Monitor RedHat in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.